cpe:/a:apple:quicktime:7.4.4 CVE-2008-1020 2008-04-04T13:44:00.000-04:00 2017-08-07T21:29:49.790-04:00 6.8 NETWORK MEDIUM NONE PARTIAL PARTIAL PARTIAL http://nvd.nist.gov 2008-04-04T16:03:00.000-04:00 ALLOWS_USER_ACCESS SECTRACK 1019764 BUGTRAQ 20080403 ZDI-08-017: Apple QuickTime Kodak Encoding Heap Overflow Vulnerability BID 28583 SECUNIA 29650 VUPEN ADV-2008-1078 CERT TA08-094A CONFIRM http://support.apple.com/kb/HT1241 MISC http://www.zerodayinitiative.com/advisories/ZDI-08-017 XF quicktime-pictimage-bo(41610) Heap-based buffer overflow in quickTime.qts in Apple QuickTime before 7.4.5 on Windows allows remote attackers to execute arbitrary code via a crafted PICT image file with Kodak encoding, related to error checking and error messages.