Computer Security
[EN] securityvulns.ru no-pyccku


Apple QuickTime multiple security vulnerabilities
updated since 06.11.2007
Published:15.11.2007
Source:
SecurityVulns ID:8320
Type:remote
Threat Level:
7/10
Description:Multiple buffer overflows and memory corruption on different graphics and video file formats.
Affected:APPLE : QuickTime 7.2
CVE:CVE-2007-4677
 CVE-2007-4676
 CVE-2007-4675 (Heap-based buffer overflow in the QuickTime VR extension 7.2.0.240 in QuickTime.qts in Apple QuickTime before 7.3 allows remote attackers to execute arbitrary code via a QTVR (QuickTime Virtual Reality) movie file containing a large size field in the atom header of a panorama sample atom.)
 CVE-2007-4674
 CVE-2007-4672
Original documentdocumentDVLabs, TPTI-07-20: Apple Quicktime Movie Stack Overflow Vulnerability (15.11.2007)
 documentvulndev 48bits, [48Bits Advisory] QuickTime Panorama Sample Atom Heap Overflow (14.11.2007)
 documentCERT, US-CERT Technical Cyber Security Alert TA07-310A -- Apple QuickTime Updates for Multiple Vulnerabilities (07.11.2007)
 documentIDEFENSE, iDefense Security Advisory 11.05.07: Apple QuickTime Panorama Sample Atom Heap Buffer Overflow Vulnerability (06.11.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod