CVE-2009-0185 - Computer security: vulnerabilities and exploits database

[EN] securityvulns.ru
no-pyccku

CVE CVE-2009-0185
Status UNKNOWN
Description Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted MS ADPCM encoded audio data in an AVI movie file.
Severity High
CVSS score 9,3
CVSS vector (AV:N/AC:M/Au:N/C:C/I:C/A:C)
Phase ASSIGNED (10.06.2009)
NVD: http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-0185
References APPLE : APPLE-SA-2009-06-01-1
BID : 35163
BUGTRAQ : 20090602 Secunia Research: Apple QuickTime MS ADPCM Encoding Buffer Overflow
CONFIRM : http://support.apple.com/kb/HT3591
MISC : http://secunia.com/secunia_research/2009-6/
OSVDB : 54879
SECTRACK : 1022314
SECUNIA : 35091
VUPEN : ADV-2009-1469
XF : quicktime-msadpcm-bo(50894)
SecurityVulns: Apple QuickTime multiple security vulnerabilities

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

test server