Untrusted search path vulnerability in Installer of QuickTime for Windows allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
Max CVSS
7.8
EPSS Score
0.07%
Published
2017-07-07
Updated
2017-07-14
QuickTime 7 in Apple OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted file, a different vulnerability than CVE-2015-3765, CVE-2015-3779, CVE-2015-3788, CVE-2015-3789, CVE-2015-3790, CVE-2015-3791, CVE-2015-3792, CVE-2015-5751, and CVE-2015-5753.
Max CVSS
7.5
EPSS Score
4.54%
Published
2015-08-17
Updated
2017-09-21
Apple QuickTime allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a malformed version number and flags in an mvhd atom.
Max CVSS
9.3
EPSS Score
35.22%
Published
2014-07-26
Updated
2017-01-07
Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted clef atom in a movie file.
Max CVSS
9.3
EPSS Score
9.60%
Published
2014-02-27
Updated
2015-10-21
Apple QuickTime before 7.7.5 does not properly perform a byte-swapping operation, which allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds memory access and application crash) via a crafted ttfo element in a movie file.
Max CVSS
9.3
EPSS Score
0.64%
Published
2014-02-27
Updated
2014-03-10
Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PSD image.
Max CVSS
9.3
EPSS Score
1.06%
Published
2014-02-27
Updated
2014-03-10
Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ldat atom in a movie file.
Max CVSS
9.3
EPSS Score
1.06%
Published
2014-02-27
Updated
2014-03-10
Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted dref atom in a movie file.
Max CVSS
9.3
EPSS Score
3.30%
Published
2014-02-27
Updated
2014-03-10
Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ftab atom in a movie file.
Max CVSS
9.3
EPSS Score
4.86%
Published
2014-02-27
Updated
2014-02-27
Integer signedness error in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted stsz atom in a movie file.
Max CVSS
9.3
EPSS Score
3.65%
Published
2014-02-27
Updated
2014-03-10
Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with H.264 encoding.
Max CVSS
9.3
EPSS Score
5.08%
Published
2014-02-27
Updated
2015-10-21
Apple QuickTime before 7.7.5 does not initialize an unspecified pointer, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted track list in a movie file.
Max CVSS
9.3
EPSS Score
3.03%
Published
2014-02-27
Updated
2014-02-27
Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted mvhd atoms in a movie file.
Max CVSS
9.3
EPSS Score
8.60%
Published
2013-05-24
Updated
2017-09-19
Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted JPEG data in a movie file.
Max CVSS
9.3
EPSS Score
6.00%
Published
2013-05-24
Updated
2017-09-19
Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted JPEG data in a movie file.
Max CVSS
9.3
EPSS Score
81.84%
Published
2013-05-24
Updated
2017-09-19
Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with Sorenson encoding.
Max CVSS
9.3
EPSS Score
4.04%
Published
2013-05-24
Updated
2017-09-19
Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with H.264 encoding.
Max CVSS
9.3
EPSS Score
2.70%
Published
2013-05-24
Updated
2017-09-19

CVE-2013-1017

Public exploit
Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted dref atoms in a movie file.
Max CVSS
9.3
EPSS Score
97.28%
Published
2013-05-24
Updated
2017-09-19
Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with H.263 encoding.
Max CVSS
9.3
EPSS Score
2.96%
Published
2013-05-24
Updated
2017-09-19
Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted TeXML file.
Max CVSS
9.3
EPSS Score
20.12%
Published
2013-05-24
Updated
2017-09-19
Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MP3 file.
Max CVSS
9.3
EPSS Score
5.08%
Published
2013-05-24
Updated
2017-09-19
Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted FPX file.
Max CVSS
9.3
EPSS Score
22.70%
Published
2013-05-24
Updated
2017-09-19
Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted QTIF file.
Max CVSS
9.3
EPSS Score
5.83%
Published
2013-05-24
Updated
2017-09-19
Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted enof atoms in a movie file.
Max CVSS
9.3
EPSS Score
51.59%
Published
2013-05-24
Updated
2017-09-19
Buffer overflow in Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted transform attribute in a text3GTrack element in a QuickTime TeXML file.
Max CVSS
9.3
EPSS Score
2.61%
Published
2012-11-09
Updated
2017-09-19
141 vulnerabilities found
1 2 3 4 5 6
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!