Vulnerabilities (CVE)

Filtered by vendor Apple Subscribe
Filtered by product Quicktime
Total 250 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2006-1462 1 Apple 1 Quicktime 2024-11-21 5.1 MEDIUM N/A
Multiple integer overflows in Apple QuickTime before 7.1 allow remote attackers to execute arbitrary code via a crafted QuickTime H.264 (M4V) video format file.
CVE-2006-1461 1 Apple 1 Quicktime 2024-11-21 5.1 MEDIUM N/A
Multiple buffer overflows in Apple QuickTime before 7.1 allow remote attackers to execute arbitrary code via a crafted QuickTime Flash (SWF) file.
CVE-2006-1460 1 Apple 1 Quicktime 2024-11-21 5.1 MEDIUM N/A
Multiple buffer overflows in Apple QuickTime before 7.1 allow remote attackers to execute arbitrary code via a crafted QuickTime movie (.MOV), as demonstrated via a large size for a udta Atom.
CVE-2006-1459 1 Apple 1 Quicktime 2024-11-21 5.1 MEDIUM N/A
Multiple integer overflows in Apple QuickTime before 7.1 allow remote attackers to cause a denial of service or execute arbitrary code via a crafted QuickTime movie (.MOV).
CVE-2006-1458 1 Apple 1 Quicktime 2024-11-21 5.1 MEDIUM N/A
Integer overflow in Apple QuickTime Player before 7.1 allows remote attackers to execute arbitrary code via a crafted JPEG image.
CVE-2006-1454 1 Apple 1 Quicktime 2024-11-21 5.1 MEDIUM N/A
Heap-based buffer overflow in Apple QuickTime before 7.1 allows remote attackers to execute arbitrary code via a crafted QuickDraw PICT image format file with malformed image data.
CVE-2006-1453 1 Apple 1 Quicktime 2024-11-21 5.1 MEDIUM N/A
Stack-based buffer overflow in Apple QuickTime before 7.1 allows remote attackers to execute arbitrary code via a crafted QuickDraw PICT image format file containing malformed font information.
CVE-2006-1249 1 Apple 2 Itunes, Quicktime 2024-11-21 6.8 MEDIUM N/A
Integer overflow in Apple QuickTime Player 7.0.3 and 7.0.4 and iTunes 6.0.1 and 6.0.2 allows remote attackers to execute arbitrary code via a FlashPix (FPX) image that contains a field that specifies a large number of blocks.
CVE-2005-4092 1 Apple 2 Itunes, Quicktime 2024-11-21 7.5 HIGH N/A
Multiple heap-based buffer overflows in QuickTime.qts in Apple QuickTime Player 7.0.3 and iTunes 6.0.1 (3) and earlier allow remote attackers to cause a denial of service (crash) and execute arbitrary code via a .mov file with (1) a Movie Resource atom with a large size value, or (2) an stsd atom with a modified Sample Description Table size value, and possibly other vectors involving media files. NOTE: item 1 was originally identified by CVE-2005-4127 for a pre-patch announcement, and item 2 was originally identified by CVE-2005-4128 for a pre-patch announcement.
CVE-2005-3713 1 Apple 1 Quicktime 2024-11-21 7.5 HIGH N/A
Heap-based buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code via a GIF image file with a crafted Netscape Navigator Application Extension Block that modifies the heap in the Picture Modifier block.
CVE-2005-3711 1 Apple 1 Quicktime 2024-11-21 7.5 HIGH N/A
Integer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code via a TIFF image file with modified (1) "strips" (StripByteCounts) or (2) "bands" (StripOffsets) values.
CVE-2005-3710 1 Apple 1 Quicktime 2024-11-21 7.5 HIGH N/A
Integer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code via a TIFF image file with modified image height and width (ImageWidth) tags.
CVE-2005-3709 1 Apple 1 Quicktime 2024-11-21 7.5 HIGH N/A
Integer underflow in Apple Quicktime before 7.0.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the Color Map Entry Size in a TGA image file.
CVE-2005-3708 1 Apple 1 Quicktime 2024-11-21 7.5 HIGH N/A
Integer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code via crafted TGA image files.
CVE-2005-3707 1 Apple 1 Quicktime 2024-11-21 7.5 HIGH N/A
Buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code via crafted TGA image files.
CVE-2005-2756 1 Apple 1 Quicktime 2024-11-21 5.1 MEDIUM N/A
Apple QuickTime before 7.0.3 allows user-assisted attackers to overwrite memory and execute arbitrary code via a crafted PICT file that triggers an overflow during expansion.
CVE-2005-2755 1 Apple 1 Quicktime 2024-11-21 2.6 LOW N/A
Apple QuickTime Player before 7.0.3 allows user-assisted attackers to cause a denial of service (crash) via a crafted file with a missing movie attribute, which leads to a null dereference.
CVE-2005-2754 1 Apple 1 Quicktime 2024-11-21 5.1 MEDIUM N/A
Integer overflow in Apple QuickTime before 7.0.3 allows user-assisted attackers to execute arbitrary code via a crafted MOV file with "Improper movie attributes."
CVE-2005-2753 1 Apple 1 Quicktime 2024-11-21 5.1 MEDIUM N/A
Integer overflow in Apple QuickTime before 7.0.3 allows user-assisted attackers to execute arbitrary code via a crafted MOV file that causes a sign extension of the length element in a Pascal style string.
CVE-2005-2743 1 Apple 3 Mac Os X, Mac Os X Server, Quicktime 2024-11-21 7.5 HIGH N/A
The Java extensions for QuickTime 6.52 and earlier in Apple Mac OS X 10.3.9 allow untrusted applets to call arbitrary functions in system libraries, which allows remote attackers to execute arbitrary code.