Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Apple QuickTime Multiple Buffer Overflow Vulnerabilities (Windows)
Information
Severity
Severity
Family
Family
CVSSv2 Base
CVSSv2 Base
CVSSv2 Vector
CVSSv2 Vector
Solution Type
Solution Type
Created
Created
Modified
Modified
Summary
The host is running Apple QuickTime and is prone to multiple buffer overflow vulnerabilities.
Insight
Insight
The flaws are due to - a buffer overflow error, when handling pict files. - heap buffer overflow error, when handling 'GIF' images and 'STSC', 'STSS', 'STSZ' and 'STTS' atoms in QuickTime movie files. - multiple stack buffer overflows existed in the handling of 'H.264' encoded movie files. - stack buffer overflow existed in the QuickTime ActiveX control's handling of 'QTL' files. - an integer overflow existed in the handling of track run atoms in QuickTime movie files. - improper bounds checking when handling 'mp4v' codec information.
Affected Software
Affected Software
Apple QuickTime version prior to 7.7
Solution
Solution
Upgrade to Apple QuickTime version 7.7 or later