Download
| Alert*
oval:org.mitre.oval:def:7523
The host is installed with Apple QuickTime 6.x or 7.x before 7.6.8 and is prone to remote code execution vulnerability. The flaw is present in IPersistPropertyBag2::Read function in QTPlugin.ocx, which fails to properly handle the _Marshaled_pUnk attribute. Successful exploitation allows attackers t ... oval:org.secpod.oval:def:4306 The host is missing an important security update according to Apple advisory, APPLE-SA-2010-09-15-1. The update is required to fix multiple arbitrary code execution vulnerabilities. The flaws are present in the application, which fails to sanitize malicious data. Successful exploitation could allow ... oval:org.secpod.oval:def:11698 The host is installed with Apple QuickTime before 7.74.80.86 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle dref atoms. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:11699 The host is installed with Apple QuickTime before 7.74.80.86 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle H.263 encoded movie files. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:5773 The host is installed with Quicktime before 7.7.2 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a crafted movie file with Sorenson encoding. Successful exploitation could allow attackers to execute arbitrary code or crash the se ... oval:org.secpod.oval:def:5770 The host is installed with Quicktime before 7.7.2 and is prone to an integer signedness error vulnerability. A flaw is present in the application, which fails to properly handle a crafted QTVR movie file. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:5776 The host is installed with Quicktime before 7.7.2 and is prone to a stack-based buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a crafted pathname for a file. Successful exploitation could allow attackers to execute arbitrary code or crash the serv ... oval:org.secpod.oval:def:3107 The host is installed with Apple QuickTime before 7.7.1 and is prone to multiple vulnerabilities. The flaws are present in the application, which fails to handle a crafted TKHD atoms in a QuickTime movie file. Successful exploitation could allow attackers to execute arbitrary code or crash the servi ... oval:org.secpod.oval:def:11700 The host is installed with Apple QuickTime before 7.74.80.86 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle Sorenson encoded movie files. Successful exploitation could allow attackers to execute arbitrary code or crash the servic ... oval:org.secpod.oval:def:11701 The host is installed with Apple QuickTime before 7.74.80.86 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle JPEG encoded data. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:11702 The host is installed with Apple QuickTime before 7.74.80.86 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle JPEG encoded data. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:11703 The host is installed with Apple QuickTime before 7.74.80.86 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle 'mvhd' atoms. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:11704 The host is installed with Apple QuickTime before 7.74.80.86 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle 'mvhd' atoms. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:3096 The host is installed with Apple QuickTime before 7.7.1 and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted PICT file. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:1212 The host is installed with Apple QuickTime and is prone to heap based overflow vulnerability. A flaw is present in the application, which fails to handle a file permission. Successful exploitation allow local user can access potentially sensitive information. oval:org.secpod.oval:def:1211 The host is installed with Apple QuickTime and is prone to heap based overflow vulnerability. A flaw is present in the application, which fails in processing of Track header atoms. Successful exploitation allow remote attackers to execute arbitrary code or cause a denial of service (application cras ... oval:org.secpod.oval:def:11696 The host is installed with Apple QuickTime before 7.74.80.86 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted TeXML file. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:11697 The host is installed with Apple QuickTime before 7.74.80.86 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle H.263 encoded movie files. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:3766 The host is missing a security update according to Apple advisory, APPLE-SA-2010-08-12-1. The update is required to fix a stack based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted movie file. Successful exploitation could allow attackers to cras ... oval:org.secpod.oval:def:1995 The host is installed with Apple QuickTime before 7.7 and is prone to buffer overflow vulnerability.A flaw is present in the application which fails to properly handle pict files. Successful exploitation allows remote attackers to execute arbitrary code or cause a denial of service. oval:org.secpod.oval:def:1997 The host is installed with Apple QuickTime before 7.7 and is prone to heap based overflow vulnerability. A flaw is present in the application which fails to properly handle STSZ atoms in a QuickTime movie file. Successful exploitation allows remote attackers to execute arbitrary code or cause a deni ... oval:org.secpod.oval:def:1996 The host is installed with Apple QuickTime before 7.7 and is prone to heap based overflow vulnerability. A flaw is present in the application which fails to properly handle STTS atoms in QuickTime movie files. Successful exploitation allows remote attackers to execute arbitrary code or cause a denia ... oval:org.secpod.oval:def:1999 The host is installed with Apple QuickTime before 7.7 and is prone to heap based overflow vulnerability. A flaw is present in the application which fails to properly handle STSC atoms in a QuickTime movie file. Successful exploitation allows remote attackers to execute arbitrary code or cause a deni ... oval:org.secpod.oval:def:1998 The host is installed with Apple QuickTime before 7.7 and is prone to heap based overflow vulnerability. A flaw is present in the application which fails to properly handle STSS atoms in a QuickTime movie file.Successful exploitation allows remote attackers to execute arbitrary code or cause a denia ... oval:org.secpod.oval:def:4317 The host is installed with Apple Quicktime before 7.6.9 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a specially crafted PICT file. Successful exploitation allow remote attackers to execute arbitrary code or cause a denial of ... oval:org.secpod.oval:def:1210 The host is installed with Apple QuickTime and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a specially crafted PICT file. Successful exploitation allow remote attackers to execute arbitrary code or cause a denial of service (appl ... oval:org.secpod.oval:def:1207 The host is installed with Apple QuickTime and is prone to integer overflow vulnerability. A flaw is present in the application, which fails to properly handle a specially crafted movie file. Successful exploitation allow remote attackers to execute arbitrary code or cause a denial of service (appli ... oval:org.secpod.oval:def:1209 The host is installed with Apple QuickTime and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a specially crafted flashpix file. Successful exploitation allow remote attackers to execute arbitrary code or cause a denial of service (a ... oval:org.secpod.oval:def:1208 The host is installed with Apple QuickTime and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a specially crafted QTVR (QuickTime Virtual Reality) movie file. Successful exploitation allow remote attackers to execute arbitrary code o ... oval:org.mitre.oval:def:11800 Stack-based buffer overflow in the error-logging functionality in Apple QuickTime before 7.6.7 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file. oval:org.secpod.oval:def:16493 The host is missing a security update according to Apple advisory, APPLE-SA-2009-01-21. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to handle crafted data. Successful exploitation could allow attackers to execute arbitrary code or cra ... oval:org.mitre.oval:def:5672 Buffer overflow in Apple QuickTime before 7.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MPEG-4 video file. oval:org.mitre.oval:def:6405 Heap-based buffer overflow in Apple QuickTime before 7.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted H.264 movie file. oval:org.secpod.oval:def:7886 The host is installed with Apple QuickTime before 7.7.3 and is prone to multiple buffer overflow vulnerabilities. The flaws are present in the application, which fails to properly handle the style elements in QuickTime TeXML files. Successful exploitation could allow attackers to execute arbitrary c ... oval:org.secpod.oval:def:7887 The host is installed with Apple QuickTime before 7.7.3 and is prone to buffer overflow vulnerability. A flaw is present in the application, which fails in plugin's handling of MIME types. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7888 The host is installed with Apple QuickTime before 7.7.3 and is prone to use after free vulnerability. A flaw is present in the application, which fails in the QuickTime ActiveX control's handling of the Clear() method. Successful exploitation could allow attackers to execute arbitrary code or crash ... oval:org.secpod.oval:def:7889 The host is installed with Apple QuickTime before 7.7.3 and is prone to buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle Targa image files. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7882 The host is installed with Apple QuickTime before 7.7.3 and is prone to buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle REGION records in PICT files. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7883 The host is installed with Apple QuickTime before 7.7.3 and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly handle PICT files. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7884 The host is installed with Apple QuickTime before 7.7.3 and is prone to use after free vulnerability. A flaw is present in the application, which fails in plugin's handling of '_qtactivex_' parameters within a HTML object element. Successful exploitation could allow attackers to execute arbitrary co ... oval:org.secpod.oval:def:7885 The host is installed with Apple QuickTime before 7.7.3 and is prone to buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle the transform attribute in text3GTrack elements. Successful exploitation could allow attackers to execute arbitrary code or cras ... oval:org.secpod.oval:def:16477 The host is installed with Apple QuickTime before 7.6.2 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted compressed PSD image. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:16478 The host is installed with Apple QuickTime before 7.6.2 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted PICT image. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:16475 The host is installed with Apple QuickTime before 7.6.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted movie file. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:16476 The host is installed with Apple QuickTime before 7.6.2 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted FLC compression file. Successful exploitation could allow attackers to execute arbitrary code or crash the service ... oval:org.secpod.oval:def:16479 The host is installed with Apple QuickTime before 7.6.2 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted movie file containing (CRGN) atom types. Successful exploitation could allow attackers to execute arbitrary code o ... oval:org.secpod.oval:def:16470 The host is installed with Apple QuickTime before 7.5.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted PICT image. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:16474 The host is installed with Apple QuickTime before 7.6.2 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted MS ADPCM encoded audio data. Successful exploitation could allow attackers to execute arbitrary code or crash the ... oval:org.secpod.oval:def:16471 The host is installed with Apple QuickTime before 7.5.5 and is prone to a stack-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted movie file. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:16472 The host is installed with Apple QuickTime before 7.5.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to handle a crafted PICT image. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.mitre.oval:def:6187 Unspecified vulnerability in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a crafted H.263 encoded movie file that triggers memory corruption. oval:org.secpod.oval:def:16480 The host is installed with Apple QuickTime before 7.6.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted image description atoms in an Apple video file. Successful exploitation could allow attackers to execute arbitrary code or ... oval:org.secpod.oval:def:16481 The host is installed with Apple QuickTime before 7.6.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly initialize memory before use in handling movie files. Successful exploitation could allow attackers to execute arbitrary code or cr ... oval:org.secpod.oval:def:16482 The host is installed with Apple QuickTime before 7.6.2 and is prone to a heap-based memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted JP2 image. Successful exploitation could allow attackers to execute arbitrary code or crash the service ... oval:org.secpod.oval:def:16483 The host is installed with Apple QuickTime before 7.6.2 and is prone to a heap-based memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted JP2 image. Successful exploitation could allow attackers to execute arbitrary code or crash the service ... oval:org.mitre.oval:def:5646 Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a QTVR movie file with crafted THKD atoms. oval:org.secpod.oval:def:2020 The host is installed with Apple QuickTime before 7.7 and is prone to multiple stack-based buffer overflow vulnerabilities. The flaws are present in the application which fails to properly handle H.264 encoded movie files. Successful exploitation allows remote attackers to execute arbitrary code or ... oval:org.secpod.oval:def:2022 The host is installed with Apple QuickTime before 7.7 and is prone to integer overflow vulnerability. A flaw is present in the application which fails to properly handle track run atoms in QuickTime movie files. Successful exploitation allows remote attackers to execute arbitrary code or cause a den ... oval:org.secpod.oval:def:2021 The host is installed with Apple QuickTime before 7.7 and is prone to heap based overflow vulnerability. A flaw is present in the application which fails to properly handle GIF images. Successful exploitation allows remote attackers to execute arbitrary code or cause a denial of service. oval:org.secpod.oval:def:2023 The host is installed with Apple QuickTime before 7.7 and is prone to stack buffer overflow vulnerability. A flaw is present in the application which fails to properly handle PICT files. Successful exploitation allows remote attackers to execute arbitrary code or cause a denial of service. oval:org.mitre.oval:def:5467 Apple QuickTime before 7.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted H.264 movie file. oval:org.secpod.oval:def:2000 The host is installed with Apple QuickTime before 7.7 and is prone to stack-based buffer overflow vulnerability. A flaw is present in the application which fails to properly handle QTL files. Successful exploitation allows remote attackers to execute arbitrary code or cause a denial of service. oval:org.secpod.oval:def:2002 The host is installed with Apple QuickTime before 7.7 and is prone to heap based overflow vulnerability. A flaw is present in the application which fails to properly handle GIF images. Successful exploitation allows remote attackers to execute arbitrary code or cause a denial of service. oval:org.secpod.oval:def:2001 The host is installed with Apple QuickTime before 7.7 and is prone to multiple stack-based buffer overflow vulnerabilities. The flaws are present in the application which fails to properly handle H.264 encoded movie files. Successful exploitation allows remote attackers to execute arbitrary code or ... oval:org.secpod.oval:def:2004 The host is installed with Apple QuickTime before 7.7 and is prone to integer overflow vulnerability. A flaw is present in the application which fails to properly handle track run atoms in QuickTime movie files. Successful exploitation allows remote attackers to execute arbitrary code or cause a den ... oval:org.secpod.oval:def:2005 The host is installed with Apple QuickTime before 7.7 and is prone to stack buffer overflow vulnerability. A flaw is present in the application which fails to properly handle PICT files. Successful exploitation allows remote attackers to execute arbitrary code or cause a denial of service. oval:org.secpod.oval:def:2015 The host is installed with Apple QuickTime before 7.7 or Apple Mac OS X 10.6.8 and is prone to heap based overflow vulnerability. A flaw is present in the application which fails to properly handle STTS atoms in QuickTime movie files. Successful exploitation allows remote attackers to execute arbitr ... oval:org.secpod.oval:def:2014 The host is installed with Apple QuickTime before 7.7 and is prone to buffer overflow vulnerability.A flaw is present in the application which fails to properly handle pict files. Successful exploitation allows remote attackers to execute arbitrary code or cause a denial of service. oval:org.secpod.oval:def:2017 The host is installed with Apple QuickTime before 7.7 or Apple Mac OS X 10.6.8 and is prone to heap based overflow vulnerability. A flaw is present in the application which fails to properly handle STSS atoms in a QuickTime movie file. Successful exploitation allows remote attackers to execute arbit ... oval:org.secpod.oval:def:2016 The host is installed with Apple QuickTime before 7.7 or Mac OS X 10.6.8 and is prone to heap based overflow vulnerability. A flaw is present in the application which fails to properly handle STSZ atoms in a QuickTime movie file. Successful exploitation allows remote attackers to execute arbitrary c ... oval:org.secpod.oval:def:2019 The host is installed with Apple QuickTime before 7.7 and is prone to stack-based buffer overflow vulnerability. A flaw is present in the application which fails to properly handle QTL files. Successful exploitation allows remote attackers to execute arbitrary code or cause a denial of service. oval:org.secpod.oval:def:2018 The host is installed with Apple QuickTime before 7.7 or Apple Mac OS X 10.6.8 and is prone to heap based overflow vulnerability. A flaw is present in the application which fails to properly handle STSC atoms in a QuickTime movie file. Successful exploitation allows remote attackers to execute arbit ... oval:org.mitre.oval:def:6211 Buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a crafted MP3 audio file. oval:org.mitre.oval:def:6218 Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via an AVI movie file with an invalid nBlockAlign value in the _WAVEFORMATEX structure. oval:org.secpod.oval:def:16455 The host is installed with Apple QuickTime before 7.4.5 and is prone to a denial of service vulnerability. A flaw is present in the application, which fails to properly handle a crafted ftyp atoms in a movie file. Successful exploitation could allow attackers to execute arbitrary code or crash the s ... oval:org.secpod.oval:def:16456 The host is missing a security update according to Apple advisory, APPLE-SA-2008-04-02. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle multiple vulnerabilities. The flaws are present in the application, which fails to ... oval:org.secpod.oval:def:2300 The host is installed with Apple QuickTime before 7.7 and is prone to memory corruption vulnerability. A flaw is present in the application which is caused by improper bounds checking when handling mp4v codec information. Successful exploitation allows remote attackers to execute arbitrary code on t ... oval:org.secpod.oval:def:16466 The host is installed with Apple QuickTime before 7.5.5 and is prone to a stack-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle crafted elements in panorama track PDAT atoms. Successful exploitation could allow attackers to execute arbitrary code or c ... oval:org.secpod.oval:def:16467 The host is installed with Apple QuickTime before 7.5.5 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to handle a crafted movie file. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:16465 The host is installed with Apple QuickTime before 7.5.5 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted a QuickTime Virtual Reality (QTVR) movie file with crafted panorama atoms. Successful exploitation could allow att ... oval:org.secpod.oval:def:16468 The host is installed with Apple QuickTime before 7.5.5 and is prone to a heap corruption vulnerability. A flaw is present in the application, which fails to handle a crafted H.264 encoded movie file. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:16469 The host is installed with Apple QuickTime before 7.5.5 and is prone to an invalid pointer vulnerability. A flaw is present in the application, which fails to handle a crafted PICT image. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:16463 The host is installed with Apple QuickTime before 7.5.5 and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted PICT image. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.mitre.oval:def:6153 Integer signedness error in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a Cinepak encoded movie file with a crafted MDAT atom that triggers a heap-based buffer overflow. oval:org.mitre.oval:def:6135 Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a crafted RTSP URL. oval:org.mitre.oval:def:6258 Heap-based buffer overflow in Apple QuickTime before 7.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted FlashPix file. oval:org.mitre.oval:def:6132 Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a QuickTime movie file containing invalid image width data in JPEG atoms within STSD atoms. oval:org.secpod.oval:def:5762 The host is installed with Quicktime before 7.7.2 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a crafted text track in a movie file. Successful exploitation could allow attackers to execute arbitrary code or crash th ... oval:org.secpod.oval:def:5761 The host is installed with Quicktime before 7.7.2 and is prone to multiple stack overflow vulnerabilities. The flaws are present in the application, which fails to properly handle TeXML files. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:5763 The host is installed with Quicktime before 7.7.2 and is prone to a heap-based buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle H.264 encoded movie files. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:5768 The host is installed with Quicktime before 7.7.2 and is prone to a stack-based buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a crafted QTMovie object. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:5838 The host is missing a critical security update according to Apple advisory, APPLE-SA-2011-10-26-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to sanitize malicious data. Successful exploitation could allow attackers to execute arbitr ... oval:org.secpod.oval:def:5778 The host is missing an important security update according to Apple advisory, APPLE-SA-2012-05-15-1. The update is required to fix a buffer underflow vulnerability. The flaws are present in the application, which fails to properly handle malicious data. Successful exploitation could allow attackers ... oval:org.secpod.oval:def:3104 The host is installed with Apple QuickTime before 7.7.1 and is prone to multiple vulnerabilities. The flaws are present in the application, which fails to handle a crafted font table in a QuickTime movie file. Successful exploitation could allow attackers to execute arbitrary code or crash the servi ... oval:org.secpod.oval:def:3105 The host is installed with Apple QuickTime before 7.7.1 and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted movie file with FLC encoding. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:3106 The host is installed with Apple QuickTime before 7.7.1 and is prone to an integer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted movie file with JPEG2000 encoding. Successful exploitation could allow attackers to execute arbitrary code or crash the ser ... oval:org.secpod.oval:def:11692 The host is installed with Apple QuickTime before 7.74.80.86 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle 'enof' atoms. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:11693 The host is installed with Apple QuickTime before 7.74.80.86 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted QTIF file. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:11694 The host is installed with Apple QuickTime before 7.74.80.86 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a crafted FPX file. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:11695 The host is installed with Apple QuickTime before 7.74.80.86 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle crafted MP3 files. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:3044 The host is installed with Apple QuickTime and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a specially crafted QTVR (QuickTime Virtual Reality) movie file. Successful exploitation allow remote attackers to execute arbitrary code o ... oval:org.secpod.oval:def:3042 The host is installed with Apple QuickTime and is prone to integer overflow vulnerability. A flaw is present in the application, which fails to properly handle a specially crafted movie file. Successful exploitation allow remote attackers to execute arbitrary code or cause a denial of service (appli ... oval:org.secpod.oval:def:3043 The host is installed with Apple QuickTime and is prone to memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a specially crafted flashpix file. Successful exploitation allow remote attackers to execute arbitrary code or cause a denial of service (a ... oval:org.secpod.oval:def:5772 The host is installed with Quicktime before 7.7.2 and is prone to a buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle a crafted movie file with RLE encoding. Successful exploitation could allow attackers to execute arbitrary code or crash the service ... oval:org.secpod.oval:def:5775 The host is installed with Quicktime before 7.7.2 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted .pict file. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:5774 The host is installed with Quicktime before 7.7.2 and is prone to an Integer overflow vulnerability. A flaw is present in the application, which fails to properly handle sean atoms. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7890 The host is installed with Apple QuickTime before 7.7.3 and is prone to buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle 'rnet' boxes in MP4 files. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:7891 The host is missing a security update according to Apple advisory, APPLE-SA-2012-11-07-1. The update is required to fix multiple vulnerabilities. The flaws are present in the application, which fails to properly handle crafted files. Successful exploitation could allow attackers to execute arbitrary ... oval:org.secpod.oval:def:2003 The host is missing a security update according to APPLE-SA-2011-08-03-1. The update is required to fix multiple buffer overflow vulnerabilities. The flaws are present in the application which fails to properly handle certain movie files. Successful exploitation allows remote attackers to execute ar ... oval:org.secpod.oval:def:2013 The host is missing a security update according to APPLE-SA-2011-08-03-1. The update is required to fix multiple buffer overflow vulnerabilities. The flaws are present in the application which fails to properly handle certain movie files. Successful exploitation allows remote attackers to execute ar ... oval:org.secpod.oval:def:16492 The host is installed with Apple QuickTime before 7.6.9 and is prone to a memory corruption vulnerability. A flaw is present in the application, which fails to properly handle a crafted GIF file. Successful exploitation could allow attackers to execute arbitrary code or crash the service. oval:org.secpod.oval:def:4318 The host is missing an important security update according to Apple advisory, APPLE-SA-2010-12-07-1 and the update is required to fix multiple memory corruption vulnerabilities. A flaw is present in the application, which fails to sanitize user supplied input. Successful exploitation allow remote at ... |