CVE-2012-0663
Apple Quicktime TeXML Karaoke Element Parsing Remote Code Execution Vulnerability
Severity Score
9.3
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Multiple stack-based buffer overflows in Apple QuickTime before 7.7.2 on Windows allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted TeXML file.
Múltiples desbordamientos de búfer basados en memoria dinámica en antes de Apple QuickTime v7.7.2 permite a atacantes remotos ejecutar código arbitrario o causar una denegación de servicio (caída de aplicación) a través de un archivo TeXML modificado.
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.
The specific flaw exists within the parsing of XML elements within a TeXML file. Specifically, when handling the karaoke XML element the code within QuickTime3GPP.qtx does not properly validate the length of the data within specific sub-fields. By providing specially crafted data, the code can be made to copy too much data into a fixed-length buffer on the stack. Exploitation of this vulnerability could allow a remote attacker to execute arbitrary code under the context of the user running Quicktime.
*Credits:
Alexander Gavrun
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2012-01-12 CVE Reserved
- 2012-05-16 CVE Published
- 2012-06-28 First Exploit
- 2024-08-06 CVE Updated
- 2024-11-14 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (6)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/53571 | Vdb Entry | |
| http://www.securitytracker.com/id?1027065 | Vdb Entry | |
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16006 | Signature |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/19433 | 2012-06-28 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://lists.apple.com/archives/security-announce/2012/May/msg00005.html | 2017-09-19 | |
| http://support.apple.com/kb/HT5261 | 2017-09-19 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | <= 7.7.1 Search vendor "Apple" for product "Quicktime" and version " <= 7.7.1" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 3.0 Search vendor "Apple" for product "Quicktime" and version "3.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 4.1.2 Search vendor "Apple" for product "Quicktime" and version "4.1.2" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 5.0 Search vendor "Apple" for product "Quicktime" and version "5.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 5.0.1 Search vendor "Apple" for product "Quicktime" and version "5.0.1" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 5.0.2 Search vendor "Apple" for product "Quicktime" and version "5.0.2" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 6.0 Search vendor "Apple" for product "Quicktime" and version "6.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 6.0.0 Search vendor "Apple" for product "Quicktime" and version "6.0.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 6.0.1 Search vendor "Apple" for product "Quicktime" and version "6.0.1" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 6.0.2 Search vendor "Apple" for product "Quicktime" and version "6.0.2" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 6.1 Search vendor "Apple" for product "Quicktime" and version "6.1" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 6.1.0 Search vendor "Apple" for product "Quicktime" and version "6.1.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 6.1.1 Search vendor "Apple" for product "Quicktime" and version "6.1.1" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 6.2.0 Search vendor "Apple" for product "Quicktime" and version "6.2.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 6.3.0 Search vendor "Apple" for product "Quicktime" and version "6.3.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 6.4.0 Search vendor "Apple" for product "Quicktime" and version "6.4.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 6.5 Search vendor "Apple" for product "Quicktime" and version "6.5" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 6.5.0 Search vendor "Apple" for product "Quicktime" and version "6.5.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 6.5.1 Search vendor "Apple" for product "Quicktime" and version "6.5.1" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 6.5.2 Search vendor "Apple" for product "Quicktime" and version "6.5.2" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.0 Search vendor "Apple" for product "Quicktime" and version "7.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.0.0 Search vendor "Apple" for product "Quicktime" and version "7.0.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.0.1 Search vendor "Apple" for product "Quicktime" and version "7.0.1" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.0.2 Search vendor "Apple" for product "Quicktime" and version "7.0.2" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.0.3 Search vendor "Apple" for product "Quicktime" and version "7.0.3" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.0.4 Search vendor "Apple" for product "Quicktime" and version "7.0.4" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.1 Search vendor "Apple" for product "Quicktime" and version "7.1" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.1.0 Search vendor "Apple" for product "Quicktime" and version "7.1.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.1.1 Search vendor "Apple" for product "Quicktime" and version "7.1.1" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.1.2 Search vendor "Apple" for product "Quicktime" and version "7.1.2" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.1.3 Search vendor "Apple" for product "Quicktime" and version "7.1.3" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.1.4 Search vendor "Apple" for product "Quicktime" and version "7.1.4" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.1.5 Search vendor "Apple" for product "Quicktime" and version "7.1.5" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.1.6 Search vendor "Apple" for product "Quicktime" and version "7.1.6" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.2 Search vendor "Apple" for product "Quicktime" and version "7.2" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.2.0 Search vendor "Apple" for product "Quicktime" and version "7.2.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.2.1 Search vendor "Apple" for product "Quicktime" and version "7.2.1" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.3 Search vendor "Apple" for product "Quicktime" and version "7.3" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.3.0 Search vendor "Apple" for product "Quicktime" and version "7.3.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.3.1 Search vendor "Apple" for product "Quicktime" and version "7.3.1" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.3.1.70 Search vendor "Apple" for product "Quicktime" and version "7.3.1.70" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.4 Search vendor "Apple" for product "Quicktime" and version "7.4" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.4.0 Search vendor "Apple" for product "Quicktime" and version "7.4.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.4.1 Search vendor "Apple" for product "Quicktime" and version "7.4.1" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.4.5 Search vendor "Apple" for product "Quicktime" and version "7.4.5" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.5.0 Search vendor "Apple" for product "Quicktime" and version "7.5.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.5.5 Search vendor "Apple" for product "Quicktime" and version "7.5.5" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.6.0 Search vendor "Apple" for product "Quicktime" and version "7.6.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.6.1 Search vendor "Apple" for product "Quicktime" and version "7.6.1" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.6.2 Search vendor "Apple" for product "Quicktime" and version "7.6.2" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.6.5 Search vendor "Apple" for product "Quicktime" and version "7.6.5" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.6.6 Search vendor "Apple" for product "Quicktime" and version "7.6.6" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.6.7 Search vendor "Apple" for product "Quicktime" and version "7.6.7" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.6.8 Search vendor "Apple" for product "Quicktime" and version "7.6.8" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.6.9 Search vendor "Apple" for product "Quicktime" and version "7.6.9" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.7.0 Search vendor "Apple" for product "Quicktime" and version "7.7.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.60.92.0 Search vendor "Apple" for product "Quicktime" and version "7.60.92.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.62.14.0 Search vendor "Apple" for product "Quicktime" and version "7.62.14.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.64.17.73 Search vendor "Apple" for product "Quicktime" and version "7.64.17.73" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.65.17.80 Search vendor "Apple" for product "Quicktime" and version "7.65.17.80" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.66.71.0 Search vendor "Apple" for product "Quicktime" and version "7.66.71.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.67.75.0 Search vendor "Apple" for product "Quicktime" and version "7.67.75.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.68.75.0 Search vendor "Apple" for product "Quicktime" and version "7.68.75.0" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|
| Apple Search vendor "Apple" | Quicktime Search vendor "Apple" for product "Quicktime" | 7.69.80.9 Search vendor "Apple" for product "Quicktime" and version "7.69.80.9" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | * | - |
Safe
|