Apple Quicktime vulnerabilities

CVE-2007-4707 [CRITICAL] CWE-119 CVE-2007-4707: Multiple unspecified vulnerabilities in the Flash media handler in Apple QuickTime before 7.3.1 allo Multiple unspecified vulnerabilities in the Flash media handler in Apple QuickTime before 7.3.1 allow remote attackers to execute arbitrary code or have other unspecified impacts via a crafted QuickTime movie.

CVE-2007-4706 [MEDIUM] CWE-119 CVE-2007-4706: Heap-based buffer overflow in Apple QuickTime before 7.3.1 allows remote attackers to execute arbitr Heap-based buffer overflow in Apple QuickTime before 7.3.1 allows remote attackers to execute arbitrary code via a crafted QTL file.

CVE-2007-6238 [CRITICAL] CVE-2007-6238: Unspecified vulnerability in Apple QuickTime 7.2 on Windows XP allows remote attackers to execute ar Unspecified vulnerability in Apple QuickTime 7.2 on Windows XP allows remote attackers to execute arbitrary code via unknown attack vectors, probably a different vulnerability than CVE-2007-6166. NOTE: this information is based upon a vague advisory by a vulnerability information sales organization that does not coordinate with vendors or release advisories

CVE-2007-6166 [CRITICAL] CWE-119 CVE-2007-6166: Stack-based buffer overflow in Apple QuickTime before 7.3.1, as used in QuickTime Player on Windows Stack-based buffer overflow in Apple QuickTime before 7.3.1, as used in QuickTime Player on Windows XP and Safari on Mac OS X, allows remote Real Time Streaming Protocol (RTSP) servers to execute arbitrary code via an RTSP response with a long Content-Type header.

CVE-2007-4674 [MEDIUM] CWE-189 CVE-2007-4674: An "integer arithmetic" error in Apple QuickTime 7.2 allows remote attackers to execute arbitrary co An "integer arithmetic" error in Apple QuickTime 7.2 allows remote attackers to execute arbitrary code via a crafted movie file containing a movie atom with a large size value, which triggers a stack-based buffer overflow.

CVE-2007-2395 [CRITICAL] CVE-2007-2395: Unspecified vulnerability in Apple QuickTime before 7.3 allows remote attackers to execute arbitrary Unspecified vulnerability in Apple QuickTime before 7.3 allows remote attackers to execute arbitrary code via a crafted image description atom in a movie file, related to "memory corruption."

CVE-2007-3750 [CRITICAL] CWE-119 CVE-2007-3750: Heap-based buffer overflow in Apple QuickTime before 7.3 allows remote attackers to execute arbitrar Heap-based buffer overflow in Apple QuickTime before 7.3 allows remote attackers to execute arbitrary code via crafted Sample Table Sample Descriptor (STSD) atoms in a movie file.

CVE-2007-4672 [HIGH] CWE-119 CVE-2007-4672: Stack-based buffer overflow in Apple QuickTime before 7.3 allows remote attackers to execute arbitra Stack-based buffer overflow in Apple QuickTime before 7.3 allows remote attackers to execute arbitrary code via an invalid UncompressedQuickTimeData opcode length in a PICT image.

CVE-2007-4673 [CRITICAL] CVE-2007-4673: Argument injection vulnerability in Apple QuickTime 7.2 for Windows XP SP2 and Vista allows remote a Argument injection vulnerability in Apple QuickTime 7.2 for Windows XP SP2 and Vista allows remote attackers to execute arbitrary commands via a URL in the qtnext field in a crafted QTL file. NOTE: this issue may be related to CVE-2006-4965 or CVE-2007-5045.

CVE-2007-5045 [CRITICAL] CVE-2007-5045: Argument injection vulnerability in Apple QuickTime 7.1.5 and earlier, when running on systems with Argument injection vulnerability in Apple QuickTime 7.1.5 and earlier, when running on systems with Mozilla Firefox before 2.0.0.7 installed, allows remote attackers to execute arbitrary commands via a QuickTime Media Link (QTL) file with an embed XML element and a qtnext parameter containing the Firefox "-chrome" argument. NOTE: this is a related issue to C

CVE-2007-2396 [CRITICAL] CVE-2007-2396: The JDirect support in QuickTime for Java in Apple Quicktime before 7.2 exposes certain dangerous in The JDirect support in QuickTime for Java in Apple Quicktime before 7.2 exposes certain dangerous interfaces, which allows remote attackers to execute arbitrary code via crafted Java applets.

CVE-2007-2392 [CRITICAL] CVE-2007-2392: Apple Quicktime before 7.2 on Mac OS X 10.3.9 and 10.4.9 allows user-assisted remote attackers to ex Apple Quicktime before 7.2 on Mac OS X 10.3.9 and 10.4.9 allows user-assisted remote attackers to execute arbitrary code via a crafted movie file that triggers memory corruption.

CVE-2007-2394 [CRITICAL] CVE-2007-2394: Integer overflow in Apple Quicktime before 7.2 on Mac OS X 10.3.9 and 10.4.9 allows user-assisted re Integer overflow in Apple Quicktime before 7.2 on Mac OS X 10.3.9 and 10.4.9 allows user-assisted remote attackers to execute arbitrary code via crafted (1) title and (2) author fields in an SMIL file, related to improper calculations for memory allocation.

CVE-2007-2393 [CRITICAL] CVE-2007-2393: The design of QuickTime for Java in Apple Quicktime before 7.2 allows remote attackers to bypass cer The design of QuickTime for Java in Apple Quicktime before 7.2 allows remote attackers to bypass certain security controls and write to process memory via Java applets, possibly leading to arbitrary code execution.

CVE-2007-2397 [CRITICAL] CVE-2007-2397: QuickTime for Java in Apple Quicktime before 7.2 does not properly check permissions, which allows r QuickTime for Java in Apple Quicktime before 7.2 does not properly check permissions, which allows remote attackers to disable security controls and execute arbitrary code via crafted Java applets.

CVE-2007-2402 [MEDIUM] CWE-200 CVE-2007-2402: QuickTime for Java in Apple Quicktime before 7.2 does not perform sufficient "access control," which QuickTime for Java in Apple Quicktime before 7.2 does not perform sufficient "access control," which allows remote attackers to obtain sensitive information (screen content) via crafted Java applets.

CVE-2007-2388 [CRITICAL] CWE-264 CVE-2007-2388: Apple QuickTime for Java 7.1.6 on Mac OS X and Windows does not properly restrict QTObject subclassi Apple QuickTime for Java 7.1.6 on Mac OS X and Windows does not properly restrict QTObject subclassing, which allows remote attackers to execute arbitrary code via a web page containing a user-defined class that accesses unsafe functions that can be leveraged to write to arbitrary memory locations.

CVE-2007-2389 [HIGH] CVE-2007-2389: Apple QuickTime for Java 7.1.6 on Mac OS X and Windows does not clear potentially sensitive memory b Apple QuickTime for Java 7.1.6 on Mac OS X and Windows does not clear potentially sensitive memory before use, which allows remote attackers to read memory from a web browser via unknown vectors related to Java applets.

CVE-2007-0754 [CRITICAL] CVE-2007-0754: Heap-based buffer overflow in Apple QuickTime before 7.1.3 allows user-assisted remote attackers to Heap-based buffer overflow in Apple QuickTime before 7.1.3 allows user-assisted remote attackers to execute arbitrary code via a crafted Sample Table Sample Descriptor (STSD) atom size in a QuickTime movie.

CVE-2007-2296 [CRITICAL] CWE-189 CVE-2007-2296: Integer overflow in the FlipFileTypeAtom_BtoN function in Apple Quicktime 7.1.5, and other versions Integer overflow in the FlipFileTypeAtom_BtoN function in Apple Quicktime 7.1.5, and other versions before 7.2, allows remote attackers to execute arbitrary code via a crafted M4V (MP4) file.