Vulnerabilities > Apple > Quicktime > 7.4
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-02-14 | CVE-2008-0778 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Apple Quicktime Multiple stack-based buffer overflows in an ActiveX control in QTPlugin.ocx for Apple QuickTime 7.4.1 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long arguments to the (1) SetBgColor, (2) SetHREF, (3) SetMovieName, (4) SetTarget, and (5) SetMatrix methods. | 7.5 |
2008-01-11 | CVE-2008-0234 | Buffer Errors vulnerability in Apple Quicktime 7.3.1.70/7.4 Buffer overflow in Apple Quicktime Player 7.3.1.70 and other versions before 7.4.1, when RTSP tunneling is enabled, allows remote attackers to execute arbitrary code via a long Reason-Phrase response to an rtsp:// request, as demonstrated using a 404 error message. | 9.3 |