Vulnerabilities > Apple > Quicktime > 6.1.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-01-05 | CVE-2007-0059 | Remote Security vulnerability in QuickTime Player Cross-zone scripting vulnerability in Apple Quicktime 3 to 7.1.3 allows remote user-assisted attackers to execute arbitrary code and list filesystem contents via a QuickTime movie (.MOV) with an HREF Track (HREFTrack) that contains an automatic action tag with a local URI, which is executed in a local zone during preview, as exploited by a MySpace worm. network apple | 6.8 |
2006-09-12 | CVE-2006-4388 | Overflow and Exception vulnerability in Apple QuickTime Integer overflow in Apple QuickTime before 7.1.3 allows user-assisted remote attackers to execute arbitrary code via a crafted FlashPix file. | 5.1 |
2006-09-12 | CVE-2006-4386 | Overflow and Exception vulnerability in Apple QuickTime Integer overflow in Apple QuickTime before 7.1.3 allows user-assisted remote attackers to execute arbitrary code via a crafted H.264 movie, a different issue than CVE-2006-4381. | 5.1 |
2006-09-12 | CVE-2006-4384 | Overflow and Exception vulnerability in Apple QuickTime Heap-based buffer overflow in Apple QuickTime before 7.1.3 allows user-assisted remote attackers to execute arbitrary code via the COLOR_64 chunk in a FLIC (FLC) movie. | 5.1 |
2006-09-12 | CVE-2006-4381 | Overflow and Exception vulnerability in Apple QuickTime Integer overflow in Apple QuickTime before 7.1.3 allows user-assisted remote attackers to execute arbitrary code via a crafted H.264 movie. | 5.1 |
2006-05-12 | CVE-2006-2238 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple Quicktime Heap-based buffer overflow in Apple QuickTime before 7.1 allows remote attackers to execute arbitrary code via a crafted BMP file that triggers the overflow in the ReadBMP function. | 7.5 |
2006-05-12 | CVE-2006-1462 | Numeric Errors vulnerability in Apple Quicktime Multiple integer overflows in Apple QuickTime before 7.1 allow remote attackers to execute arbitrary code via a crafted QuickTime H.264 (M4V) video format file. | 5.1 |
2006-05-12 | CVE-2006-1461 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple Quicktime Multiple buffer overflows in Apple QuickTime before 7.1 allow remote attackers to execute arbitrary code via a crafted QuickTime Flash (SWF) file. | 5.1 |
2006-05-12 | CVE-2006-1460 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple Quicktime Multiple buffer overflows in Apple QuickTime before 7.1 allow remote attackers to execute arbitrary code via a crafted QuickTime movie (.MOV), as demonstrated via a large size for a udta Atom. | 5.1 |
2006-05-12 | CVE-2006-1459 | Numeric Errors vulnerability in Apple Quicktime Multiple integer overflows in Apple QuickTime before 7.1 allow remote attackers to cause a denial of service or execute arbitrary code via a crafted QuickTime movie (.MOV). | 5.1 |