Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.802795
Category:General
Title:Apple QuickTime Multiple Vulnerabilities - (Windows)
Summary:This host is installed with Apple QuickTime and is prone to; multiple vulnerabilities.
Description:Summary:
This host is installed with Apple QuickTime and is prone to
multiple vulnerabilities.

Vulnerability Insight:
The flaws are due to

- Errors within the handling of TeXML files.

- An error when handling of text tracks and MPEG files and sean atoms.

- An error while handling RLE, JPEG2000, H.264 and Sorenson encoded
movie files.

- An error exists within the parsing of MP4 encoded files and .pict files.

- An off-by-one error can be exploited to cause a single byte buffer overflow.

- An error when handling audio samples.

- An error within the plugin's handling of QTMovie objects.

- An error when parsing the MediaVideo header in videos encoded with the PNG
format.

- A signedness error within the handling of QTVR movie files.

- A boundary error in QuickTime.qts when extending a file path based on its
short path.

Vulnerability Impact:
Successful exploitation could allow attackers to execute arbitrary code or
cause a denial of service.

Affected Software/OS:
QuickTime Player version prior to 7.7.2 on Windows.

Solution:
Upgrade to QuickTime Player version 7.7.2 or later.

CVSS Score:
9.3

CVSS Vector:
AV:N/AC:M/Au:N/C:C/I:C/A:C

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2012-0663
http://lists.apple.com/archives/security-announce/2012/May/msg00005.html
BugTraq ID: 53571
http://www.securityfocus.com/bid/53571
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16006
http://www.securitytracker.com/id?1027065
Common Vulnerability Exposure (CVE) ID: CVE-2012-0665
BugTraq ID: 53576
http://www.securityfocus.com/bid/53576
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15938
Common Vulnerability Exposure (CVE) ID: CVE-2011-3458
http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html
Common Vulnerability Exposure (CVE) ID: CVE-2011-3459
Common Vulnerability Exposure (CVE) ID: CVE-2012-0658
http://lists.apple.com/archives/security-announce/2012/May/msg00001.html
BugTraq ID: 53445
http://www.securityfocus.com/bid/53445
BugTraq ID: 53465
http://www.securityfocus.com/bid/53465
Common Vulnerability Exposure (CVE) ID: CVE-2012-0659
BugTraq ID: 53467
http://www.securityfocus.com/bid/53467
Common Vulnerability Exposure (CVE) ID: CVE-2012-0666
BugTraq ID: 53577
http://www.securityfocus.com/bid/53577
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16123
Common Vulnerability Exposure (CVE) ID: CVE-2011-3460
Common Vulnerability Exposure (CVE) ID: CVE-2012-0667
BugTraq ID: 53583
http://www.securityfocus.com/bid/53583
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15858
Common Vulnerability Exposure (CVE) ID: CVE-2012-0661
BugTraq ID: 53466
http://www.securityfocus.com/bid/53466
Common Vulnerability Exposure (CVE) ID: CVE-2012-0668
http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html
BugTraq ID: 53579
http://www.securityfocus.com/bid/53579
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15821
Common Vulnerability Exposure (CVE) ID: CVE-2012-0669
BugTraq ID: 53580
http://www.securityfocus.com/bid/53580
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16119
Common Vulnerability Exposure (CVE) ID: CVE-2012-0670
BugTraq ID: 53582
http://www.securityfocus.com/bid/53582
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16111
Common Vulnerability Exposure (CVE) ID: CVE-2012-0671
BugTraq ID: 53584
http://www.securityfocus.com/bid/53584
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15219
Common Vulnerability Exposure (CVE) ID: CVE-2012-0265
BugTraq ID: 53578
http://www.securityfocus.com/bid/53578
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16170
Common Vulnerability Exposure (CVE) ID: CVE-2012-0664
BugTraq ID: 53574
http://www.securityfocus.com/bid/53574
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16148
Common Vulnerability Exposure (CVE) ID: CVE-2012-0660
BugTraq ID: 53469
http://www.securityfocus.com/bid/53469
CopyrightCopyright (C) 2012 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.