Apple: >> Quicktime >> 7.0 Security Vulnerabilities
Integer overflow in Apple QuickTime before 7.0.3 allows user-assisted attackers to execute arbitrary code via a crafted MOV file that causes a sign extension of the length element in a Pascal style string.
CVSS Score
5.1
EPSS Score
0.014
Published
2005-11-05
Integer overflow in Apple QuickTime before 7.0.3 allows user-assisted attackers to execute arbitrary code via a crafted MOV file with "Improper movie attributes."
CVSS Score
5.1
EPSS Score
0.014
Published
2005-11-05
Apple QuickTime Player before 7.0.3 allows user-assisted attackers to cause a denial of service (crash) via a crafted file with a missing movie attribute, which leads to a null dereference.
CVSS Score
2.6
EPSS Score
0.014
Published
2005-11-05
Apple QuickTime before 7.0.3 allows user-assisted attackers to overwrite memory and execute arbitrary code via a crafted PICT file that triggers an overflow during expansion.
CVSS Score
5.1
EPSS Score
0.023
Published
2005-11-05
Apple QuickTime Player 7.0 on Mac OS X 10.4 allows remote attackers to obtain sensitive information via a .mov file with a Quartz Composer composition (.qtz) file that uses certain patches to read local information, then other patches to send the information to the attacker.
CVSS Score
5.0
EPSS Score
0.028
Published
2005-05-12
Page 21