) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
- CPE Product Version: cpe:/a:apple:quicktime:7.6.5
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2010-3801 |
Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted FlashPix file. Published: December 09, 2010; 3:00:17 PM -0500 |
V3.x:(not available) V2.0: 9.3 HIGH |
| CVE-2010-3800 |
Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted PICT file. Published: December 09, 2010; 3:00:17 PM -0500 |
V3.x:(not available) V2.0: 9.3 HIGH |
| CVE-2010-1508 |
Heap-based buffer overflow in Apple QuickTime before 7.6.9 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Track Header (aka tkhd) atoms. Published: December 09, 2010; 3:00:16 PM -0500 |
V3.x:(not available) V2.0: 9.3 HIGH |
| CVE-2010-0530 |
Apple QuickTime before 7.6.9 on Windows sets weak permissions for the Apple Computer directory in the profile of a user account, which allows local users to obtain sensitive information by reading files in this directory. Published: December 09, 2010; 3:00:16 PM -0500 |
V3.x:(not available) V2.0: 2.1 LOW |
| CVE-2010-1818 |
The IPersistPropertyBag2::Read function in QTPlugin.ocx in Apple QuickTime 6.x, 7.x before 7.6.8, and other versions allows remote attackers to execute arbitrary code via the _Marshaled_pUnk attribute, which triggers unmarshalling of an untrusted pointer. Published: August 31, 2010; 4:00:01 PM -0400 |
V3.x:(not available) V2.0: 9.3 HIGH |