CVE-2005-1579 — Apple Quicktime vulnerability

4 documents4 sources

Severity

5.0MEDIUMNVD

EPSS

2.8%

top 13.85%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple Quicktime

Timeline

PublishedMay 12

Latest updateMay 1

Description

Apple QuickTime Player 7.0 on Mac OS X 10.4 allows remote attackers to obtain sensitive information via a .mov file with a Quartz Composer composition (.qtz) file that uses certain patches to read local information, then other patches to send the information to the attacker.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDapple/quicktime7.0

Patches

Patch: secunia.com ↗Patch: www.securityfocus.com ↗Patch: secunia.com ↗

🔴Vulnerability Details

GHSA

GHSA-836x-rc5c-8hxf: Apple QuickTime Player 7↗2022-05-01

▶

CVEList

CVE-2005-1579: Apple QuickTime Player 7↗2005-05-14

▶

💥Exploits & PoCs

Exploit-DB

Mercur Messaging 2005 (Windows 2000 SP4) - IMAP 'Subscribe' Remote Overflow↗2007-03-21

▶