CVE-2010-3790
Apple QuickTime Pict File Matrix Parsing Remote Code Execution Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
QuickTime in Apple Mac OS X 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file that causes an image sample transformation to scale a sprite outside a buffer boundary.
QuickTime en Apple Mac OS X V10.6.x anterior v10.6.5 permite a atacantes remotos ejecutar código de su elección o causar una denegación de servicio (corrupción de memoria y caída aplicación) a través de un archivo de película manipulado.
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple QuickTime Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within how the application parses a Matrix structure within a particular opcode embedded within a .pict file. When using this Matrix structure to transform image data, the application will miscalculate an index to represent a row of an object. This will cause the application to write outside the bounds of the array of objects which can lead to code execution under the context of the application.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2010-10-07 CVE Reserved
- 2010-11-16 CVE Published
- 2024-07-09 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (9)
| URL | Tag | Source |
|---|---|---|
| http://support.apple.com/kb/HT4447 | X_refsource_confirm |
|
| http://support.apple.com/kb/HT4723 | X_refsource_confirm |
|
| http://www.securityfocus.com/bid/44794 | Vdb Entry | |
| http://www.securitytracker.com/id?1024729 | Vdb Entry | |
| http://www.zerodayinitiative.com/advisories/ZDI-11-038 | X_refsource_misc |
|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://support.apple.com/kb/HT4435 | 2011-07-02 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.6.0 Search vendor "Apple" for product "Mac Os X" and version "10.6.0" | - |
Affected
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.6.1 Search vendor "Apple" for product "Mac Os X" and version "10.6.1" | - |
Affected
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.6.2 Search vendor "Apple" for product "Mac Os X" and version "10.6.2" | - |
Affected
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.6.3 Search vendor "Apple" for product "Mac Os X" and version "10.6.3" | - |
Affected
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Search vendor "Apple" for product "Mac Os X" | 10.6.4 Search vendor "Apple" for product "Mac Os X" and version "10.6.4" | - |
Affected
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.6.0 Search vendor "Apple" for product "Mac Os X Server" and version "10.6.0" | - |
Affected
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.6.1 Search vendor "Apple" for product "Mac Os X Server" and version "10.6.1" | - |
Affected
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.6.2 Search vendor "Apple" for product "Mac Os X Server" and version "10.6.2" | - |
Affected
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.6.3 Search vendor "Apple" for product "Mac Os X Server" and version "10.6.3" | - |
Affected
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | * | - |
Affected
| in | Apple Search vendor "Apple" | Mac Os X Server Search vendor "Apple" for product "Mac Os X Server" | 10.6.4 Search vendor "Apple" for product "Mac Os X Server" and version "10.6.4" | - |
Affected
|