Download
| Alert*
oval:org.secpod.oval:def:3766
The host is missing a security update according to Apple advisory, APPLE-SA-2010-08-12-1. The update is required to fix a stack based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted movie file. Successful exploitation could allow attackers to cras ... oval:org.secpod.oval:def:3779 The host is missing an important security update according to Apple advisory, APPLE-SA-2010-03-30-1. The update is required to fix multiple heap based buffer overflow vulnerabilities. The flaws are present in the applications, which fail to handle crafted data. Successful exploitation could allow at ... oval:org.mitre.oval:def:7458 Integer overflow in Apple QuickTime before 7.6.6 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PICT image. oval:org.secpod.oval:def:3767 The host is missing an important security update according to Apple advisory, APPLE-SA-2010-03-30-1. The update is required to fix multiple heap based buffer overflow vulnerabilities. The flaws are present in the applications, which fail to handle crafted data. Successful exploitation could allow at ... oval:org.secpod.oval:def:16477 The host is installed with Apple QuickTime before 7.6.2 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted compressed PSD image. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:16478 The host is installed with Apple QuickTime before 7.6.2 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted PICT image. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:16475 The host is installed with Apple QuickTime before 7.6.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted movie file. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:16476 The host is installed with Apple QuickTime before 7.6.2 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted FLC compression file. Successful exploitation could allow attackers to execute arbitrary code or crash the service ... oval:org.secpod.oval:def:16479 The host is installed with Apple QuickTime before 7.6.2 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted movie file containing (CRGN) atom types. Successful exploitation could allow attackers to execute arbitrary code o ... oval:org.secpod.oval:def:16474 The host is installed with Apple QuickTime before 7.6.2 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted MS ADPCM encoded audio data. Successful exploitation could allow attackers to execute arbitrary code or crash the ... oval:org.secpod.oval:def:16472 The host is installed with Apple QuickTime before 7.5.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted PICT image. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.mitre.oval:def:5672 Buffer overflow in Apple QuickTime before 7.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MPEG-4 video file. oval:org.mitre.oval:def:6780 Heap-based buffer overflow in QuickTime.qts in Apple QuickTime before 7.6.6 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a PICT image with a BkPixPat opcode (0x12) containing crafted values that are used in a calculation for memory ... oval:org.mitre.oval:def:6989 Apple QuickTime before 7.6.6 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted color tables in a movie file, related to malformed MediaVideo data, a sample description atom (STSD), and a crafted length valu ... oval:org.mitre.oval:def:6969 Apple QuickTime before 7.6.6 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted BMP image. oval:org.mitre.oval:def:6405 Heap-based buffer overflow in Apple QuickTime before 7.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted H.264 movie file. oval:org.secpod.oval:def:16464 The host is installed with Apple QuickTime before 7.5.5 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted movie file. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:16480 The host is installed with Apple QuickTime before 7.6.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted image description atoms in an Apple video file. Successful exploitation could allow attackers to execute arbitrary code or ... oval:org.secpod.oval:def:16481 The host is installed with Apple QuickTime before 7.6.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly initialize memory before use in handling movie files. Successful exploitation could allow attackers to execute arbitrary code or cr ... oval:org.secpod.oval:def:16482 The host is installed with Apple QuickTime before 7.6.2 and is prone to a heap-based memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted JP2 image. Successful exploitation could allow attackers to execute arbitrary code or crash the service ... oval:org.secpod.oval:def:16483 The host is installed with Apple QuickTime before 7.6.2 and is prone to a heap-based memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted JP2 image. Successful exploitation could allow attackers to execute arbitrary code or crash the service ... oval:org.mitre.oval:def:6258 Heap-based buffer overflow in Apple QuickTime before 7.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted FlashPix file. oval:org.mitre.oval:def:5467 Apple QuickTime before 7.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted H.264 movie file. |