cpe:/a:apple:quicktime:7.0.0 cpe:/a:apple:quicktime:7.0.1 cpe:/a:apple:quicktime:7.0.2 cpe:/a:apple:quicktime:7.0.3 cpe:/a:apple:quicktime:7.0.4 cpe:/a:apple:quicktime:7.1.0 cpe:/a:apple:quicktime:7.1.1 cpe:/a:apple:quicktime:7.1.2 cpe:/a:apple:quicktime:7.1.3 cpe:/a:apple:quicktime:7.1.4 cpe:/a:apple:quicktime:7.1.5 cpe:/a:apple:quicktime:7.1.6 cpe:/a:apple:quicktime:7.2.0 cpe:/a:apple:quicktime:7.2.1 cpe:/a:apple:quicktime:7.3.0 cpe:/a:apple:quicktime:7.3.1 cpe:/a:apple:quicktime:7.3.1.70 cpe:/a:apple:quicktime:7.4.0 cpe:/a:apple:quicktime:7.4.1 cpe:/a:apple:quicktime:7.4.5 cpe:/a:apple:quicktime:7.5.0 cpe:/a:apple:quicktime:7.5.5 cpe:/a:apple:quicktime:7.6.0 cpe:/a:apple:quicktime:7.6.1 cpe:/a:apple:quicktime:7.6.2 cpe:/a:apple:quicktime:7.6.5 cpe:/a:apple:quicktime:7.6.6 cpe:/a:apple:quicktime:7.6.7 cpe:/a:apple:quicktime:7.6.8 cpe:/a:apple:quicktime:7.6.9 cpe:/a:apple:quicktime:7.66.71.0 cpe:/a:apple:quicktime:7.67.75.0 CVE-2011-0257 2011-08-15T17:55:01.270-04:00 2017-09-18T21:31:59.490-04:00 9.3 NETWORK MEDIUM NONE COMPLETE COMPLETE COMPLETE http://nvd.nist.gov 2011-08-16T11:05:00.000-04:00 EXPLOIT-DB 17777 SREASON 8365 CONFIRM http://support.apple.com/kb/HT4826 MISC http://zerodayinitiative.com/advisories/ZDI-11-252/ Integer signedness error in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PnSize opcode in a PICT file that triggers a stack-based buffer overflow.