[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244625

 
 

909

 
 

193379

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

Heap-based buffer overflow vulnerability in QuickTime in Apple Mac OS X via a crafted movie file with RLE encoding

ID: oval:org.secpod.oval:def:3774Date: (C)2012-01-20   (M)2022-07-05
Class: VULNERABILITYFamily: macos




The host is installed with Apple Mac OS X 10.6 before 10.6.3 or Apple Quicktime 7.6.6 and is prone to a buffer overflow vulnerability. A flaw is present in the applications, which fail to handle a crafted movie file with RLE encoding. Successful exploitation could allow attackers to trigger memory corruption when the length of decompressed data exceeds that of the allocated heap chunk and crash the service.

Platform:
Apple Mac OS 12
Apple Mac OS 11
Apple Mac OS X 10.15
Apple Mac OS X 10.14
Apple Mac OS X 10.12
Apple Mac OS X 10.13
Apple Mac OS X 10.8
Apple Mac OS X 10.9
Apple Mac OS X 10.10
Apple Mac OS X Server 10.8
Apple Mac OS X Server 10.9
Apple Mac OS X Server 10.10
Product:
Apple QuickTime
Reference:
CVE-2010-0516
CVE    1
CVE-2010-0516
CPE    9
cpe:/o:apple:mac_os_x
cpe:/o:apple:mac_os_x_server:10.6.2
cpe:/o:apple:mac_os_x:10.6.2
cpe:/a:apple:quicktime
...

© SecPod Technologies