cpe:/a:apple:quicktime:6.5.2::mac_os_x_10.2 cpe:/a:apple:quicktime:6.5.2::mac_os_x_10.3 cpe:/a:apple:quicktime:7.0::windows cpe:/a:apple:quicktime:7.0.1::mac_os_x_10.3 cpe:/a:apple:quicktime:7.0.1::mac_os_x_10.4 cpe:/a:apple:quicktime:7.0.1::windows cpe:/a:apple:quicktime:7.0.2::windows CVE-2005-2754 2005-11-05T06:02:00.000-05:00 2011-03-07T00:00:00.000-05:00 5.1 NETWORK HIGH NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2005-11-05T12:30:00.000-05:00 ALLOWS_USER_ACCESS SECTRACK 1015152 BID 15308 SECUNIA 17428 BUGTRAQ 20051104 Advisory: Apple QuickTime Player Remote Integer Overflow (2) OSVDB 20476 VUPEN ADV-2005-2293 CONFIRM http://docs.info.apple.com/article.html?artnum=302772 MISC http://pb.specialised.info/all/adv/quicktime-mov-io2-adv.txt Integer overflow in Apple QuickTime before 7.0.3 allows user-assisted attackers to execute arbitrary code via a crafted MOV file with "Improper movie attributes."