Test ID:	1.3.6.1.4.1.25623.1.0.802198
Category:	Denial of Service
Title:	Apple QuickTime Multiple Denial of Service Vulnerabilities - Windows
Summary:	Apple QuickTime is prone to multiple denial of service vulnerabilities.
Description:	Summary: Apple QuickTime is prone to multiple denial of service vulnerabilities. Vulnerability Insight: The flaws are due to - A integer overflow while handling the PICT files and JPEG2000 encoded movie files. - A signedness issue existed in the handling of font tables embedded in QuickTime movie files. - A buffer overflow issue while handling FLIC files, FlashPix files and FLC and RLE encoded movie files. - A memory corruption issue, while handling of TKHD atoms in QuickTime movie files. Vulnerability Impact: Successful exploitation could allow attackers to execute arbitrary code or cause a denial of service via crafted files. Affected Software/OS: QuickTime Player version prior to 7.7.1. Solution: Upgrade to QuickTime Player version 7.7.1 or later. CVSS Score: 9.3 CVSS Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-3219 http://lists.apple.com/archives/Security-announce/2011//Oct/msg00000.html http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html http://osvdb.org/76374 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17228 Common Vulnerability Exposure (CVE) ID: CVE-2011-3220 BugTraq ID: 50085 http://www.securityfocus.com/bid/50085 BugTraq ID: 50130 http://www.securityfocus.com/bid/50130 http://osvdb.org/76377 Common Vulnerability Exposure (CVE) ID: CVE-2011-3221 http://osvdb.org/76378 Common Vulnerability Exposure (CVE) ID: CVE-2011-3218 BugTraq ID: 50122 http://www.securityfocus.com/bid/50122 http://osvdb.org/76373 Common Vulnerability Exposure (CVE) ID: CVE-2011-3222 http://osvdb.org/76379 Common Vulnerability Exposure (CVE) ID: CVE-2011-3223 http://osvdb.org/76380 Common Vulnerability Exposure (CVE) ID: CVE-2011-3228 BugTraq ID: 50127 http://www.securityfocus.com/bid/50127 http://osvdb.org/76372 Common Vulnerability Exposure (CVE) ID: CVE-2011-3247 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16071 Common Vulnerability Exposure (CVE) ID: CVE-2011-3248 http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16012 Common Vulnerability Exposure (CVE) ID: CVE-2011-3249 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16130 Common Vulnerability Exposure (CVE) ID: CVE-2011-3250 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15825 Common Vulnerability Exposure (CVE) ID: CVE-2011-3251 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15861 Common Vulnerability Exposure (CVE) ID: CVE-2011-3428
Copyright	Copyright (C) 2011 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.