Apple Quicktime vulnerabilities
235 known vulnerabilities affecting apple/quicktime.
Total CVEs
235
CISA KEV
0
Public exploits
23
Exploited in wild
0
Severity breakdown
CRITICAL118HIGH20MEDIUM95LOW2
Vulnerabilities
Page 11 of 12
CVE-2006-4381MEDIUMCVSS 5.1≤ 7.1.2v5.0+13 more2006-09-12
CVE-2006-4381 [MEDIUM] CVE-2006-4381: Integer overflow in Apple QuickTime before 7.1.3 allows user-assisted remote attackers to execute ar
Integer overflow in Apple QuickTime before 7.1.3 allows user-assisted remote attackers to execute arbitrary code via a crafted H.264 movie.
nvd
CVE-2006-2238HIGHCVSS 7.5≤ 7.0.4v7.0+3 more2006-05-12
CVE-2006-2238 [HIGH] CVE-2006-2238: Heap-based buffer overflow in Apple QuickTime before 7.1 allows remote attackers to execute arbitrar
Heap-based buffer overflow in Apple QuickTime before 7.1 allows remote attackers to execute arbitrary code via a crafted BMP file that triggers the overflow in the ReadBMP function. NOTE: this issue was originally included as item 3 in CVE-2006-1983, but it has been given a separate identifier because it is a distinct issue.
nvd
CVE-2006-1463MEDIUMCVSS 5.1v7.0.3v7.0.42006-05-12
CVE-2006-1463 [MEDIUM] CWE-119 CVE-2006-1463: Heap-based buffer overflow in Apple QuickTime before 7.1 allows remote attackers to execute arbitrar
Heap-based buffer overflow in Apple QuickTime before 7.1 allows remote attackers to execute arbitrary code via a H.264 (M4V) video format file with a certain modified size value.
nvd
CVE-2006-1460MEDIUMCVSS 5.1≤ 7.0.4v7.0+3 more2006-05-12
CVE-2006-1460 [MEDIUM] CWE-119 CVE-2006-1460: Multiple buffer overflows in Apple QuickTime before 7.1 allow remote attackers to execute arbitrary
Multiple buffer overflows in Apple QuickTime before 7.1 allow remote attackers to execute arbitrary code via a crafted QuickTime movie (.MOV), as demonstrated via a large size for a udta Atom.
nvd
CVE-2006-1462MEDIUMCVSS 5.1≤ 7.0.4v7.0.0+3 more2006-05-12
CVE-2006-1462 [MEDIUM] CWE-189 CVE-2006-1462: Multiple integer overflows in Apple QuickTime before 7.1 allow remote attackers to execute arbitrary
Multiple integer overflows in Apple QuickTime before 7.1 allow remote attackers to execute arbitrary code via a crafted QuickTime H.264 (M4V) video format file.
nvd
CVE-2006-1459MEDIUMCVSS 5.1≤ 7.0.4v7.0.0+3 more2006-05-12
CVE-2006-1459 [MEDIUM] CWE-189 CVE-2006-1459: Multiple integer overflows in Apple QuickTime before 7.1 allow remote attackers to cause a denial of
Multiple integer overflows in Apple QuickTime before 7.1 allow remote attackers to cause a denial of service or execute arbitrary code via a crafted QuickTime movie (.MOV).
nvd
CVE-2006-1461MEDIUMCVSS 5.1≤ 7.0.4v7.0+3 more2006-05-12
CVE-2006-1461 [MEDIUM] CWE-119 CVE-2006-1461: Multiple buffer overflows in Apple QuickTime before 7.1 allow remote attackers to execute arbitrary
Multiple buffer overflows in Apple QuickTime before 7.1 allow remote attackers to execute arbitrary code via a crafted QuickTime Flash (SWF) file.
nvd
CVE-2006-1465MEDIUMCVSS 5.1v7.0.3v7.0.42006-05-12
CVE-2006-1465 [MEDIUM] CVE-2006-1465: Buffer overflow in Apple QuickTime before 7.1 allows remote attackers to execute arbitrary code via
Buffer overflow in Apple QuickTime before 7.1 allows remote attackers to execute arbitrary code via a crafted QuickTime AVI video format file.
nvd
CVE-2006-1458MEDIUMCVSS 5.1v7.0.3v7.0.42006-05-12
CVE-2006-1458 [MEDIUM] CWE-189 CVE-2006-1458: Integer overflow in Apple QuickTime Player before 7.1 allows remote attackers to execute arbitrary c
Integer overflow in Apple QuickTime Player before 7.1 allows remote attackers to execute arbitrary code via a crafted JPEG image.
nvd
CVE-2006-1453MEDIUMCVSS 5.1≤ 7.0.4v3.0+21 more2006-05-12
CVE-2006-1453 [MEDIUM] CWE-119 CVE-2006-1453: Stack-based buffer overflow in Apple QuickTime before 7.1 allows remote attackers to execute arbitra
Stack-based buffer overflow in Apple QuickTime before 7.1 allows remote attackers to execute arbitrary code via a crafted QuickDraw PICT image format file containing malformed font information.
nvd
CVE-2006-1454MEDIUMCVSS 5.1v7.0.3v7.0.42006-05-12
CVE-2006-1454 [MEDIUM] CWE-119 CVE-2006-1454: Heap-based buffer overflow in Apple QuickTime before 7.1 allows remote attackers to execute arbitrar
Heap-based buffer overflow in Apple QuickTime before 7.1 allows remote attackers to execute arbitrary code via a crafted QuickDraw PICT image format file with malformed image data.
nvd
CVE-2006-1464MEDIUMCVSS 5.1v7.0.3v7.0.42006-05-12
CVE-2006-1464 [MEDIUM] CVE-2006-1464: Buffer overflow in Apple QuickTime before 7.1 allows remote attackers to execute arbitrary code via
Buffer overflow in Apple QuickTime before 7.1 allows remote attackers to execute arbitrary code via a crafted QuickTime MPEG4 (M4P) video format file.
nvd
CVE-2006-1249MEDIUMCVSS 6.8v7.0.3v7.0.42006-03-19
CVE-2006-1249 [MEDIUM] CWE-189 CVE-2006-1249: Integer overflow in Apple QuickTime Player 7.0.3 and 7.0.4 and iTunes 6.0.1 and 6.0.2 allows remote
Integer overflow in Apple QuickTime Player 7.0.3 and 7.0.4 and iTunes 6.0.1 and 6.0.2 allows remote attackers to execute arbitrary code via a FlashPix (FPX) image that contains a field that specifies a large number of blocks.
nvd
CVE-2005-3709HIGHCVSS 7.5≤ 7.0.3v7.0+2 more2005-12-31
CVE-2005-3709 [HIGH] CWE-189 CVE-2005-3709: Integer underflow in Apple Quicktime before 7.0.4 allows remote attackers to cause a denial of servi
Integer underflow in Apple Quicktime before 7.0.4 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via the Color Map Entry Size in a TGA image file.
nvd
CVE-2005-3710HIGHCVSS 7.5≤ 7.0.3v7.0+2 more2005-12-31
CVE-2005-3710 [HIGH] CWE-189 CVE-2005-3710: Integer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code v
Integer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code via a TIFF image file with modified image height and width (ImageWidth) tags.
nvd
CVE-2005-2340HIGHCVSS 7.5PoC≤ 7.0.3v7.0+2 more2005-12-31
CVE-2005-2340 [HIGH] CWE-119 CVE-2005-2340: Heap-based buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitr
Heap-based buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code via a crafted (1) QuickTime Image File (QTIF), (2) PICT, or (3) JPEG format image with a long data field.
nvd
CVE-2005-3713HIGHCVSS 7.5≤ 7.0.3v7.0+2 more2005-12-31
CVE-2005-3713 [HIGH] CWE-119 CVE-2005-3713: Heap-based buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitr
Heap-based buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code via a GIF image file with a crafted Netscape Navigator Application Extension Block that modifies the heap in the Picture Modifier block.
nvd
CVE-2005-3708HIGHCVSS 7.5≤ 7.0.3v7.0+2 more2005-12-31
CVE-2005-3708 [HIGH] CVE-2005-3708: Integer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code v
Integer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code via crafted TGA image files.
nvd
CVE-2005-3707HIGHCVSS 7.5≤ 7.0.3v7.0+2 more2005-12-31
CVE-2005-3707 [HIGH] CVE-2005-3707: Buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code vi
Buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code via crafted TGA image files.
nvd
CVE-2005-3711HIGHCVSS 7.5≤ 7.0.3v7.0+2 more2005-12-31
CVE-2005-3711 [HIGH] CWE-189 CVE-2005-3711: Integer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code v
Integer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code via a TIFF image file with modified (1) "strips" (StripByteCounts) or (2) "bands" (StripOffsets) values.
nvd