CVE-2006-1459 — Apple Quicktime vulnerability

CWE-1893 documents3 sources

Severity

5.1MEDIUMNVD

EPSS

9.7%

top 7.04%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple Quicktime

Timeline

PublishedMay 12

Latest updateMay 1

Description

Multiple integer overflows in Apple QuickTime before 7.1 allow remote attackers to cause a denial of service or execute arbitrary code via a crafted QuickTime movie (.MOV).

CVSS vector

AV:N/AC:H/C:P/I:P/A:PExploitability: 4.9 | Impact: 6.4

Affected Packages1 packages

▶NVDapple/quicktime7.0.4+4

Patches

Patch: lists.apple.com ↗Patch: secunia.com ↗Patch: securitytracker.com ↗

🔴Vulnerability Details

GHSA

GHSA-6v4j-6vmg-j756: Multiple integer overflows in Apple QuickTime before 7↗2022-05-01

▶

CVEList

CVE-2006-1459: Multiple integer overflows in Apple QuickTime before 7↗2006-05-12

▶