Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple heap-based buffer overflows in QuickTime.qts in Apple QuickTime Player 7.0.3 and iTunes 6.0.1 (3) and earlier allow remote attackers to cause a denial of service (crash) and execute arbitrary code via a .mov file with (1) a Movie Resource atom with a large size value, or (2) an stsd atom with a modified Sample Description Table size value, and possibly other vectors involving media files. NOTE: item 1 was originally identified by CVE-2005-4127 for a pre-patch announcement, and item 2 was originally identified by CVE-2005-4128 for a pre-patch announcement.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Apple QuickTime STSD Atom堆溢出漏洞
Vulnerability Description
Apple QuickTime Player是QuickTime软件包的一个组件,可提供高质量声音和图象的媒体播放功能。 很多应用程序都要通过QuickTime.qts文件来访问QuickTime的功能。QuickTime.qts中存在多个缓冲区溢出漏洞。攻击者利用该漏洞导致拒绝服务并执行任意的代码。
CVSS Information
N/A
Vulnerability Type
N/A