Apple Quicktime vulnerabilities

CVE-2015-3788 [MEDIUM] CVE-2015-3788: QuickTime 7 in Apple OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause QuickTime 7 in Apple OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted file, a different vulnerability than CVE-2015-3765, CVE-2015-3779, CVE-2015-3789, CVE-2015-3790, CVE-2015-3791, CVE-2015-3792, CVE-2015-5751, CVE-2015-5753, and CVE-2015-5779.

CVE-2015-3765 [MEDIUM] CWE-119 CVE-2015-3765: QuickTime 7 in Apple OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause QuickTime 7 in Apple OS X before 10.10.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted file, a different vulnerability than CVE-2015-3779, CVE-2015-3788, CVE-2015-3789, CVE-2015-3790, CVE-2015-3791, CVE-2015-3792, CVE-2015-5751, CVE-2015-5753, and CVE-2015-5779.

CVE-2015-3669 [MEDIUM] CVE-2015-3669: QT Media Foundation in Apple QuickTime before 7.7.7 allows remote attackers to execute arbitrary cod QT Media Foundation in Apple QuickTime before 7.7.7 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file, a different vulnerability than CVE-2015-3664 and CVE-2015-3665.

CVE-2015-3666 [MEDIUM] CVE-2015-3666: QT Media Foundation in Apple QuickTime before 7.7.7, as used in OS X before 10.10.4 and other produc QT Media Foundation in Apple QuickTime before 7.7.7, as used in OS X before 10.10.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file, a different vulnerability than CVE-2015-3661, CVE-2015-3662, CVE-2015-3663, CVE-2015-3667, and CVE-2015-3668.

CVE-2015-3664 [MEDIUM] CWE-119 CVE-2015-3664: QT Media Foundation in Apple QuickTime before 7.7.7 allows remote attackers to execute arbitrary cod QT Media Foundation in Apple QuickTime before 7.7.7 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file, a different vulnerability than CVE-2015-3665 and CVE-2015-3669.

CVE-2015-3668 [MEDIUM] CVE-2015-3668: QT Media Foundation in Apple QuickTime before 7.7.7, as used in OS X before 10.10.4 and other produc QT Media Foundation in Apple QuickTime before 7.7.7, as used in OS X before 10.10.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file, a different vulnerability than CVE-2015-3661, CVE-2015-3662, CVE-2015-3663, CVE-2015-3666, and CVE-2015-3667.

CVE-2015-3665 [MEDIUM] CVE-2015-3665: QT Media Foundation in Apple QuickTime before 7.7.7 allows remote attackers to execute arbitrary cod QT Media Foundation in Apple QuickTime before 7.7.7 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file, a different vulnerability than CVE-2015-3664 and CVE-2015-3669.

CVE-2015-3661 [MEDIUM] CWE-119 CVE-2015-3661: QT Media Foundation in Apple QuickTime before 7.7.7, as used in OS X before 10.10.4 and other produc QT Media Foundation in Apple QuickTime before 7.7.7, as used in OS X before 10.10.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file, a different vulnerability than CVE-2015-3662, CVE-2015-3663, CVE-2015-3666, CVE-2015-3667, and CVE-2015-3668.

CVE-2015-3662 [MEDIUM] CVE-2015-3662: QT Media Foundation in Apple QuickTime before 7.7.7, as used in OS X before 10.10.4 and other produc QT Media Foundation in Apple QuickTime before 7.7.7, as used in OS X before 10.10.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file, a different vulnerability than CVE-2015-3661, CVE-2015-3663, CVE-2015-3666, CVE-2015-3667, and CVE-2015-3668.

CVE-2015-3667 [MEDIUM] CVE-2015-3667: QT Media Foundation in Apple QuickTime before 7.7.7, as used in OS X before 10.10.4 and other produc QT Media Foundation in Apple QuickTime before 7.7.7, as used in OS X before 10.10.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file, a different vulnerability than CVE-2015-3661, CVE-2015-3662, CVE-2015-3663, CVE-2015-3666, and CVE-2015-3668.

CVE-2015-3663 [MEDIUM] CVE-2015-3663: QT Media Foundation in Apple QuickTime before 7.7.7, as used in OS X before 10.10.4 and other produc QT Media Foundation in Apple QuickTime before 7.7.7, as used in OS X before 10.10.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file, a different vulnerability than CVE-2015-3661, CVE-2015-3662, CVE-2015-3666, CVE-2015-3667, and CVE-2015-3668.

CVE-2014-1248 [CRITICAL] CWE-119 CVE-2014-1248: Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ldat atom in a movie file.

CVE-2014-1246 [CRITICAL] CWE-119 CVE-2014-1246: Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ftab atom in a movie file.

CVE-2014-1251 [CRITICAL] CWE-119 CVE-2014-1251: Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted clef atom in a movie file.

CVE-2014-1243 [CRITICAL] CWE-119 CVE-2014-1243: Apple QuickTime before 7.7.5 does not initialize an unspecified pointer, which allows remote attacke Apple QuickTime before 7.7.5 does not initialize an unspecified pointer, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted track list in a movie file.

CVE-2014-1249 [CRITICAL] CWE-119 CVE-2014-1249: Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PSD image.

CVE-2014-1250 [CRITICAL] CWE-119 CVE-2014-1250: Apple QuickTime before 7.7.5 does not properly perform a byte-swapping operation, which allows remot Apple QuickTime before 7.7.5 does not properly perform a byte-swapping operation, which allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds memory access and application crash) via a crafted ttfo element in a movie file.

CVE-2014-1245 [CRITICAL] CWE-189 CVE-2014-1245: Integer signedness error in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrar Integer signedness error in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted stsz atom in a movie file.

CVE-2014-1247 [CRITICAL] CWE-119 CVE-2014-1247: Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted dref atom in a movie file.

CVE-2014-1244 [CRITICAL] CWE-119 CVE-2014-1244: Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or Buffer overflow in Apple QuickTime before 7.7.5 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with H.264 encoding.