Integer overflow in Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file.
Max CVSS
9.3
EPSS Score
1.91%
Published
2010-12-09
Updated
2017-09-19
Integer signedness error in Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted panorama atom in a QuickTime Virtual Reality (QTVR) movie file.
Max CVSS
9.3
EPSS Score
5.22%
Published
2010-12-09
Updated
2017-09-19
Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted FlashPix file.
Max CVSS
9.3
EPSS Score
4.46%
Published
2010-12-09
Updated
2017-09-19
Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted PICT file.
Max CVSS
9.3
EPSS Score
4.46%
Published
2010-12-09
Updated
2017-09-19
QuickTime in Apple Mac OS X 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted Sorenson movie file.
Max CVSS
6.8
EPSS Score
6.25%
Published
2010-11-16
Updated
2010-12-11
Integer signedness error in QuickTime in Apple Mac OS X 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MPEG movie file.
Max CVSS
6.8
EPSS Score
6.21%
Published
2010-11-16
Updated
2010-12-11
Buffer overflow in QuickTime in Apple Mac OS X 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MPEG movie file.
Max CVSS
6.8
EPSS Score
7.15%
Published
2010-11-16
Updated
2010-12-11
QuickTime in Apple Mac OS X 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file that causes an image sample transformation to scale a sprite outside a buffer boundary.
Max CVSS
6.8
EPSS Score
7.83%
Published
2010-11-16
Updated
2011-07-02
QuickTime in Apple Mac OS X 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted AVI file.
Max CVSS
6.8
EPSS Score
6.25%
Published
2010-11-16
Updated
2010-12-11
QuickTime in Apple Mac OS X 10.6.x before 10.6.5 accesses uninitialized memory locations during processing of JP2 image data, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted JP2 file.
Max CVSS
6.8
EPSS Score
7.99%
Published
2010-11-16
Updated
2010-12-11
CVE-2010-1818
Public exploit
The IPersistPropertyBag2::Read function in QTPlugin.ocx in Apple QuickTime 6.x, 7.x before 7.6.8, and other versions allows remote attackers to execute arbitrary code via the _Marshaled_pUnk attribute, which triggers unmarshalling of an untrusted pointer.
Max CVSS
9.3
EPSS Score
96.99%
Published
2010-08-31
Updated
2017-09-27
CVE-2010-1799
Public exploit
Stack-based buffer overflow in the error-logging functionality in Apple QuickTime before 7.6.7 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file.
Max CVSS
9.3
EPSS Score
36.47%
Published
2010-08-16
Updated
2018-10-30
Heap-based buffer overflow in Apple QuickTime before 7.6.9 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Track Header (aka tkhd) atoms.
Max CVSS
9.3
EPSS Score
7.43%
Published
2010-12-09
Updated
2017-09-19
Apple QuickTime before 7.6.6 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted BMP image.
Max CVSS
9.3
EPSS Score
0.65%
Published
2010-03-31
Updated
2017-09-19
Heap-based buffer overflow in QuickTime.qts in Apple QuickTime before 7.6.6 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a PICT image with a BkPixPat opcode (0x12) containing crafted values that are used in a calculation for memory allocation.
Max CVSS
9.3
EPSS Score
94.02%
Published
2010-03-31
Updated
2018-10-10
Apple QuickTime before 7.6.6 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted color tables in a movie file, related to malformed MediaVideo data, a sample description atom (STSD), and a crafted length value.
Max CVSS
9.3
EPSS Score
5.86%
Published
2010-03-31
Updated
2018-10-10
Integer overflow in Apple QuickTime before 7.6.6 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PICT image.
Max CVSS
9.3
EPSS Score
0.57%
Published
2010-03-31
Updated
2017-09-19
17 vulnerabilities found