CVE-2014-1391

CWE-119 — Buffer Overflow CWE-13915 documents5 sources

Severity

6.8MEDIUM

EPSS

2.6%

top 14.45%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apple MAC OS X Apple MAC OS X Server

Timeline

PublishedSep 19

Latest updateMay 17

Description

QT Media Foundation in Apple OS X before 10.9.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file with RLE encoding.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages2 packages

▶NVDapple/mac_os_x7 versions+6

▶NVDapple/mac_os_x_server10.7.5

🔴Vulnerability Details

GHSA

GHSA-8gj9-x892-w96j: QT Media Foundation in Apple OS X before 10↗2022-05-17

▶

GHSA

Moodle Temporary Passwords are Brute Force-able↗2022-05-13

▶

CVEList

CVE-2014-1391: QT Media Foundation in Apple OS X before 10↗2014-09-19

▶

💬Community

Bugzilla

CVE-2013-7424 glibc: Invalid-free when using getaddrinfo()↗2015-01-28

▶