Vulnerability Details CVE-2009-0008
Unspecified vulnerability in Apple QuickTime MPEG-2 Playback Component before 7.60.92.0 on Windows allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a crafted MPEG-2 movie.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.09
EPSS Ranking 92.2%
CVSS Severity
CVSS v2 Score 7.6
References
- http://lists.apple.com/archives/security-announce//2009/Jan/msg00001.html
- http://secunia.com/advisories/33642
- http://support.apple.com/kb/HT3404
- http://www.securityfocus.com/bid/33393
- http://www.securitytracker.com/id?1021621
- http://www.vupen.com/english/advisories/2009/0211
- https://exchange.xforce.ibmcloud.com/vulnerabilities/48162
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5974
- http://lists.apple.com/archives/security-announce//2009/Jan/msg00001.html
- http://secunia.com/advisories/33642
- http://support.apple.com/kb/HT3404
- http://www.securityfocus.com/bid/33393
- http://www.securitytracker.com/id?1021621
- http://www.vupen.com/english/advisories/2009/0211
- https://exchange.xforce.ibmcloud.com/vulnerabilities/48162
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5974
Products affected by CVE-2009-0008
-
cpe:2.3:a:apple:quicktime_mpeg-2_playback_component:*
-
cpe:2.3:o:microsoft:windows_vista:-
-
cpe:2.3:o:microsoft:windows_xp:-
-
cpe:2.3:o:microsoft:windows_xp:sp2
-
cpe:2.3:o:microsoft:windows_xp:sp3
-
cpe:2.3:o:microsoft:windows_xp:unknown