Vulnerability Details CVE-2006-1463
Heap-based buffer overflow in Apple QuickTime before 7.1 allows remote attackers to execute arbitrary code via a H.264 (M4V) video format file with a certain modified size value.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.131
EPSS Ranking 93.8%
CVSS Severity
CVSS v2 Score 5.1
References
- http://lists.apple.com/archives/security-announce/2006/May/msg00002.html
- http://secunia.com/advisories/20069
- http://securityreason.com/securityalert/888
- http://securitytracker.com/id?1016067
- http://www.securityfocus.com/archive/1/433828/100/0/threaded
- http://www.securityfocus.com/bid/17953
- http://www.us-cert.gov/cas/techalerts/TA06-132B.html
- http://www.vupen.com/english/advisories/2006/1778
- http://www.zerodayinitiative.com/advisories/ZDI-06-015.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26396
- http://lists.apple.com/archives/security-announce/2006/May/msg00002.html
- http://secunia.com/advisories/20069
- http://securityreason.com/securityalert/888
- http://securitytracker.com/id?1016067
- http://www.securityfocus.com/archive/1/433828/100/0/threaded
- http://www.securityfocus.com/bid/17953
- http://www.us-cert.gov/cas/techalerts/TA06-132B.html
- http://www.vupen.com/english/advisories/2006/1778
- http://www.zerodayinitiative.com/advisories/ZDI-06-015.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26396