GCVE - cpe:2.3:a:apple:quicktime:6.4.0:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:apple:quicktime:6.4.0:*:*:*:*:*:*:*

part: a version: 6.4.0 update: *

Vendor	Apple (`c2b419d0-9f0f-51c1-88dc-2e204a98e1c7`)
Product	Quicktime (`320a5f27-a7bd-5754-9044-5d4e54638139`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2013-1022`	vulnerable	2026-06-03 14:32:47.666753	Details available Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted mvhd atoms in a movie file. Published: 2013-05-24T10:00:00.000Z Updated: 2024-08-06T14:49:19.961Z Open on db.gcve.eu Reference links http://lists.apple.com/archives/security-announce/2013/May/msg00001.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16838 http://support.apple.com/kb/HT5770 http://lists.apple.com/archives/security-announce/2013/Jul/msg00000.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-1021`	vulnerable	2026-06-03 14:32:47.665329	Details available Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted JPEG data in a movie file. Published: 2013-05-24T10:00:00.000Z Updated: 2024-08-06T14:49:20.008Z Open on db.gcve.eu Reference links http://lists.apple.com/archives/security-announce/2013/May/msg00001.html http://support.apple.com/kb/HT5770 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16728	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-1020`	vulnerable	2026-06-03 14:32:47.663901	Details available Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted JPEG data in a movie file. Published: 2013-05-24T10:00:00.000Z Updated: 2024-08-06T14:49:20.665Z Open on db.gcve.eu Reference links http://lists.apple.com/archives/security-announce/2013/May/msg00001.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16365 http://support.apple.com/kb/HT5770	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-1019`	vulnerable	2026-06-03 14:32:47.661681	Details available Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with Sorenson encoding. Published: 2013-05-24T10:00:00.000Z Updated: 2024-08-06T14:49:20.422Z Open on db.gcve.eu Reference links http://lists.apple.com/archives/security-announce/2013/May/msg00001.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16830 http://support.apple.com/kb/HT5770 http://lists.apple.com/archives/security-announce/2013/Jul/msg00000.html http://secunia.com/advisories/54886	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-1018`	vulnerable	2026-06-03 14:32:47.659983	Details available Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with H.264 encoding. Published: 2013-05-24T10:00:00.000Z Updated: 2024-08-06T14:49:20.556Z Open on db.gcve.eu Reference links http://lists.apple.com/archives/security-announce/2013/May/msg00001.html http://support.apple.com/kb/HT5770 http://lists.apple.com/archives/security-announce/2013/Jul/msg00000.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16799	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-1017`	vulnerable	2026-06-03 14:32:47.658596	Details available Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted dref atoms in a movie file. Published: 2013-05-24T10:00:00.000Z Updated: 2024-08-06T14:49:20.300Z Open on db.gcve.eu Reference links http://lists.apple.com/archives/security-announce/2013/May/msg00001.html http://support.apple.com/kb/HT5770 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16606	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-1016`	vulnerable	2026-06-03 14:32:47.657192	Details available Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with H.263 encoding. Published: 2013-05-24T10:00:00.000Z Updated: 2024-08-06T14:49:20.405Z Open on db.gcve.eu Reference links http://lists.apple.com/archives/security-announce/2013/May/msg00001.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16497 http://support.apple.com/kb/HT5770	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-1015`	vulnerable	2026-06-03 14:32:47.655720	Details available Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted TeXML file. Published: 2013-05-24T10:00:00.000Z Updated: 2024-08-06T14:49:19.916Z Open on db.gcve.eu Reference links http://lists.apple.com/archives/security-announce/2013/May/msg00001.html http://support.apple.com/kb/HT5770 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16237	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-0989`	vulnerable	2026-06-03 14:32:47.157117	Details available Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MP3 file. Published: 2013-05-24T10:00:00.000Z Updated: 2024-08-06T14:49:19.079Z Open on db.gcve.eu Reference links https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16831 http://lists.apple.com/archives/security-announce/2013/May/msg00001.html http://support.apple.com/kb/HT5770 http://support.apple.com/kb/HT5784 http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-0988`	vulnerable	2026-06-03 14:32:47.155658	Details available Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted FPX file. Published: 2013-05-24T10:00:00.000Z Updated: 2024-08-06T14:49:20.218Z Open on db.gcve.eu Reference links http://lists.apple.com/archives/security-announce/2013/May/msg00001.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16637 http://support.apple.com/kb/HT5770 http://support.apple.com/kb/HT5784 http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-0987`	vulnerable	2026-06-03 14:32:47.154062	Details available Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted QTIF file. Published: 2013-05-24T10:00:00.000Z Updated: 2024-08-06T14:49:19.022Z Open on db.gcve.eu Reference links http://lists.apple.com/archives/security-announce/2013/May/msg00001.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16759 http://support.apple.com/kb/HT5770 http://support.apple.com/kb/HT5784 http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2013-0986`	vulnerable	2026-06-03 14:32:47.131954	Details available Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted enof atoms in a movie file. Published: 2013-05-24T10:00:00.000Z Updated: 2024-08-06T14:49:19.020Z Open on db.gcve.eu Reference links http://lists.apple.com/archives/security-announce/2013/May/msg00001.html http://support.apple.com/kb/HT5770 http://support.apple.com/kb/HT5784 http://lists.apple.com/archives/security-announce/2013/Jun/msg00000.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16794	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-3758`	vulnerable	2026-06-03 14:32:01.504335	Details available Buffer overflow in Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted transform attribute in a text3GTrack element in a QuickTime TeXML file. Published: 2012-11-09T19:00:00.000Z Updated: 2024-08-06T20:21:03.847Z Open on db.gcve.eu Reference links http://secunia.com/advisories/51226 https://exchange.xforce.ibmcloud.com/vulnerabilities/79898 http://lists.apple.com/archives/security-announce/2012/Nov/msg00002.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15951 http://support.apple.com/kb/HT5581	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-3757`	vulnerable	2026-06-03 14:32:01.502972	Details available Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted PICT file. Published: 2012-11-09T19:00:00.000Z Updated: 2024-08-06T20:21:04.294Z Open on db.gcve.eu Reference links http://secunia.com/advisories/51226 http://lists.apple.com/archives/security-announce/2012/Nov/msg00002.html http://technet.microsoft.com/en-us/security/msvr/msvr12-021 http://osvdb.org/87092 https://exchange.xforce.ibmcloud.com/vulnerabilities/79896	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-3756`	vulnerable	2026-06-03 14:32:01.501578	Details available Buffer overflow in Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted rnet box in an MP4 movie file. Published: 2012-11-09T19:00:00.000Z Updated: 2024-08-06T20:21:03.804Z Open on db.gcve.eu Reference links http://secunia.com/advisories/51226 http://lists.apple.com/archives/security-announce/2012/Nov/msg00002.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16065 http://lists.apple.com/archives/security-announce/2013/Mar/msg00002.html https://exchange.xforce.ibmcloud.com/vulnerabilities/79903	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-3755`	vulnerable	2026-06-03 14:32:01.500222	Details available Buffer overflow in Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Targa image. Published: 2012-11-09T19:00:00.000Z Updated: 2024-08-06T20:21:02.283Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/79902 http://secunia.com/advisories/51226 http://lists.apple.com/archives/security-announce/2012/Nov/msg00002.html http://www.securityfocus.com/bid/56551 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16002	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-3754`	vulnerable	2026-06-03 14:32:01.498769	Details available Use-after-free vulnerability in the Clear method in the ActiveX control in Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via unspecified vectors. Published: 2012-11-09T19:00:00.000Z Updated: 2024-08-06T20:21:02.840Z Open on db.gcve.eu Reference links http://secunia.com/advisories/51226 http://lists.apple.com/archives/security-announce/2012/Nov/msg00002.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15986 https://exchange.xforce.ibmcloud.com/vulnerabilities/79901 http://support.apple.com/kb/HT5581	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-3753`	vulnerable	2026-06-03 14:32:01.497337	Details available Buffer overflow in the plugin in Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MIME type. Published: 2012-11-09T19:00:00.000Z Updated: 2024-08-06T20:21:03.075Z Open on db.gcve.eu Reference links http://secunia.com/advisories/51226 http://lists.apple.com/archives/security-announce/2012/Nov/msg00002.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15947 http://packetstormsecurity.com/files/118421/Apple-QuickTime-7.7.2-MIME-Type-Buffer-Overflow.html https://exchange.xforce.ibmcloud.com/vulnerabilities/79900	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-3752`	vulnerable	2026-06-03 14:32:01.495954	Details available Multiple buffer overflows in Apple QuickTime before 7.7.3 allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted style element in a QuickTime TeXML file. Published: 2012-11-09T19:00:00.000Z Updated: 2024-08-06T20:21:02.286Z Open on db.gcve.eu Reference links http://secunia.com/advisories/51226 http://lists.apple.com/archives/security-announce/2012/Nov/msg00002.html http://www.securityfocus.com/bid/56557 http://packetstormsecurity.com/files/118359/Apple-QuickTime-7.7.2-TeXML-Style-Element-font-table-Field-Stack-Buffer-Overflow.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16121	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-3751`	vulnerable	2026-06-03 14:32:01.474342	Details available Use-after-free vulnerability in the plugin in Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an HTML document with a crafted _qtactivex_ parameter in an OBJECT element. Published: 2012-11-09T19:00:00.000Z Updated: 2024-08-06T20:21:04.013Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/79897 http://secunia.com/advisories/51226 http://lists.apple.com/archives/security-announce/2012/Nov/msg00002.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16166 http://support.apple.com/kb/HT5581	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-0671`	vulnerable	2026-06-03 14:31:38.306534	Details available Apple QuickTime before 7.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted .pict file. Published: 2012-05-16T01:00:00.000Z Updated: 2024-08-06T18:30:53.801Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id?1027065 http://support.apple.com/kb/HT5261 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15219 http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html http://support.apple.com/kb/HT5501	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-0670`	vulnerable	2026-06-03 14:31:38.304858	Details available Integer overflow in Apple QuickTime before 7.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted sean atom in a movie file. Published: 2012-05-16T01:00:00.000Z Updated: 2024-08-06T18:30:53.780Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id?1027065 http://support.apple.com/kb/HT5261 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16111 http://www.securityfocus.com/bid/53582 http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-0669`	vulnerable	2026-06-03 14:31:38.303204	Details available Buffer overflow in Apple QuickTime before 7.7.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with Sorenson encoding. Published: 2012-05-16T01:00:00.000Z Updated: 2024-08-06T18:30:53.841Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id?1027065 http://support.apple.com/kb/HT5261 http://www.securityfocus.com/bid/53580 http://lists.apple.com/archives/security-announce/2012/May/msg00005.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16119	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-0668`	vulnerable	2026-06-03 14:31:38.301514	Details available Buffer overflow in Apple QuickTime before 7.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with RLE encoding. Published: 2012-05-16T01:00:00.000Z Updated: 2024-08-06T18:30:53.841Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id?1027065 http://support.apple.com/kb/HT5261 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15821 http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html http://support.apple.com/kb/HT5501	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-0667`	vulnerable	2026-06-03 14:31:38.299192	Details available Integer signedness error in Apple QuickTime before 7.7.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted QTVR movie file. Published: 2012-05-16T01:00:00.000Z Updated: 2024-08-06T18:30:53.862Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id?1027065 http://support.apple.com/kb/HT5261 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15858 http://lists.apple.com/archives/security-announce/2012/May/msg00005.html http://www.securityfocus.com/bid/53583	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-0666`	vulnerable	2026-06-03 14:31:38.297504	Details available Stack-based buffer overflow in the plugin in Apple QuickTime before 7.7.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted QTMovie object. Published: 2012-05-16T01:00:00.000Z Updated: 2024-08-06T18:30:53.792Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id?1027065 http://support.apple.com/kb/HT5261 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16123 http://lists.apple.com/archives/security-announce/2012/May/msg00005.html http://www.securityfocus.com/bid/53577	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-0665`	vulnerable	2026-06-03 14:31:38.295852	Details available Heap-based buffer overflow in Apple QuickTime before 7.7.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with H.264 encoding. Published: 2012-05-16T01:00:00.000Z Updated: 2024-08-06T18:30:54.149Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id?1027065 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15938 http://support.apple.com/kb/HT5261 http://www.securityfocus.com/bid/53576 http://lists.apple.com/archives/security-announce/2012/May/msg00005.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-0664`	vulnerable	2026-06-03 14:31:38.294254	Details available Heap-based buffer overflow in Apple QuickTime before 7.7.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted text track in a movie file. Published: 2012-05-16T01:00:00.000Z Updated: 2024-08-06T18:30:54.001Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id?1027065 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16148 http://support.apple.com/kb/HT5261 http://www.securityfocus.com/bid/53574 http://lists.apple.com/archives/security-announce/2012/May/msg00005.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-0663`	vulnerable	2026-06-03 14:31:38.292517	Details available Multiple stack-based buffer overflows in Apple QuickTime before 7.7.2 on Windows allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted TeXML file. Published: 2012-05-16T01:00:00.000Z Updated: 2024-08-06T18:30:53.811Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id?1027065 http://support.apple.com/kb/HT5261 http://www.securityfocus.com/bid/53571 http://lists.apple.com/archives/security-announce/2012/May/msg00005.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16006	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2012-0265`	vulnerable	2026-06-03 14:31:35.140233	Details available Stack-based buffer overflow in Apple QuickTime before 7.7.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted pathname for a file. Published: 2012-05-16T01:00:00.000Z Updated: 2024-08-06T18:16:20.051Z Open on db.gcve.eu Reference links http://www.securitytracker.com/id?1027065 http://support.apple.com/kb/HT5261 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16170 http://www.securityfocus.com/bid/53578 http://lists.apple.com/archives/security-announce/2012/May/msg00005.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-3251`	vulnerable	2026-06-03 14:31:18.217617	Details available Apple QuickTime before 7.7.1 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted TKHD atoms in a QuickTime movie file. Published: 2011-10-28T01:00:00.000Z Updated: 2024-08-06T23:29:56.442Z Open on db.gcve.eu Reference links https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15861 http://support.apple.com/kb/HT5016	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-3250`	vulnerable	2026-06-03 14:31:18.216052	Details available Integer overflow in Apple QuickTime before 7.7.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with JPEG2000 encoding. Published: 2011-10-28T01:00:00.000Z Updated: 2024-08-06T23:29:56.267Z Open on db.gcve.eu Reference links http://support.apple.com/kb/HT5130 http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15825 http://support.apple.com/kb/HT5016	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-3249`	vulnerable	2026-06-03 14:31:18.214514	Details available Buffer overflow in Apple QuickTime before 7.7.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with FLC encoding. Published: 2011-10-28T01:00:00.000Z Updated: 2024-08-06T23:29:56.843Z Open on db.gcve.eu Reference links http://support.apple.com/kb/HT5130 http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16130 http://support.apple.com/kb/HT5016	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-3248`	vulnerable	2026-06-03 14:31:18.212728	Details available Integer signedness error in Apple QuickTime before 7.7.1 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted font table in a QuickTime movie file. Published: 2011-10-28T01:00:00.000Z Updated: 2024-08-06T23:29:56.505Z Open on db.gcve.eu Reference links http://support.apple.com/kb/HT5130 http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html http://support.apple.com/kb/HT5016 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16012	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-3247`	vulnerable	2026-06-03 14:31:18.186405	Details available Integer overflow in Apple QuickTime before 7.7.1 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PICT file. Published: 2011-10-28T01:00:00.000Z Updated: 2024-08-06T23:29:56.445Z Open on db.gcve.eu Reference links http://support.apple.com/kb/HT5016 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16071	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-1374`	vulnerable	2026-06-03 14:31:00.985918	Details available Buffer overflow in Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted REGION record in a PICT file. Published: 2012-11-09T19:00:00.000Z Updated: 2024-08-06T22:21:34.231Z Open on db.gcve.eu Reference links http://secunia.com/advisories/51226 http://lists.apple.com/archives/security-announce/2012/Nov/msg00002.html http://support.apple.com/kb/HT5581 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15782	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-0258`	vulnerable	2026-06-03 14:30:48.187760	Details available Apple QuickTime before 7.7 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted image description associated with an mp4v tag in a movie file. Published: 2011-09-06T15:00:00.000Z Updated: 2024-08-06T21:51:07.563Z Open on db.gcve.eu Reference links http://support.apple.com/kb/HT4826 http://securityreason.com/securityalert/8368 http://www.securityfocus.com/archive/1/519483/100/0/threaded http://zerodayinitiative.com/advisories/ZDI-11-277/ https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15671	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-0251`	vulnerable	2026-06-03 14:30:48.177337	Details available Heap-based buffer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted STSZ atoms in a QuickTime movie file. Published: 2011-08-04T01:00:00.000Z Updated: 2024-08-06T21:51:07.809Z Open on db.gcve.eu Reference links https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16143 http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html http://support.apple.com/kb/HT5002	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-0250`	vulnerable	2026-06-03 14:30:48.175786	Details available Heap-based buffer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted STSS atoms in a QuickTime movie file. Published: 2011-08-04T01:00:00.000Z Updated: 2024-08-06T21:51:07.273Z Open on db.gcve.eu Reference links http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html http://support.apple.com/kb/HT5002 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15885	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-0249`	vulnerable	2026-06-03 14:30:48.174283	Details available Heap-based buffer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted STSC atoms in a QuickTime movie file. Published: 2011-08-04T01:00:00.000Z Updated: 2024-08-06T21:51:07.452Z Open on db.gcve.eu Reference links http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html http://support.apple.com/kb/HT5002 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16089	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-0248`	vulnerable	2026-06-03 14:30:48.172713	Details available Stack-based buffer overflow in the QuickTime ActiveX control in Apple QuickTime before 7.7 on Windows, when Internet Explorer is used, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted QTL file. Published: 2011-08-04T01:00:00.000Z Updated: 2024-09-16T19:31:50.795Z Open on db.gcve.eu Reference links http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-0247`	vulnerable	2026-06-03 14:30:48.171185	Details available Multiple stack-based buffer overflows in Apple QuickTime before 7.7 on Windows allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted H.264 movie. Published: 2011-08-04T01:00:00.000Z Updated: 2024-08-06T21:51:07.670Z Open on db.gcve.eu Reference links http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16186	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2011-0246`	vulnerable	2026-06-03 14:30:48.162523	Details available Heap-based buffer overflow in Apple QuickTime before 7.7 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted GIF file. Published: 2011-08-04T01:00:00.000Z Updated: 2024-08-06T21:51:07.449Z Open on db.gcve.eu Reference links https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15681 http://lists.apple.com/archives/security-announce/2011//Aug/msg00000.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-4009`	vulnerable	2026-06-03 14:30:34.637783	Details available Integer overflow in Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file. Published: 2010-12-09T19:00:00.000Z Updated: 2024-08-07T03:26:12.282Z Open on db.gcve.eu Reference links http://lists.apple.com/archives/security-announce/2010//Dec/msg00000.html http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16218 http://support.apple.com/kb/HT4447 http://www.securitytracker.com/id?1024830	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-3802`	vulnerable	2026-06-03 14:30:33.404486	Details available Integer signedness error in Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted panorama atom in a QuickTime Virtual Reality (QTVR) movie file. Published: 2010-12-09T19:00:00.000Z Updated: 2024-08-07T03:26:11.101Z Open on db.gcve.eu Reference links http://zerodayinitiative.com/advisories/ZDI-10-260/ http://osvdb.org/69756 http://lists.apple.com/archives/security-announce/2010//Dec/msg00000.html http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16105	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-3801`	vulnerable	2026-06-03 14:30:33.403052	Details available Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted FlashPix file. Published: 2010-12-09T19:00:00.000Z Updated: 2024-08-07T03:26:12.206Z Open on db.gcve.eu Reference links http://osvdb.org/69755 http://lists.apple.com/archives/security-announce/2010//Dec/msg00000.html http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html http://zerodayinitiative.com/advisories/ZDI-10-259/ http://support.apple.com/kb/HT4447	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-3800`	vulnerable	2026-06-03 14:30:33.383077	Details available Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted PICT file. Published: 2010-12-09T19:00:00.000Z Updated: 2024-08-07T03:26:11.097Z Open on db.gcve.eu Reference links http://zerodayinitiative.com/advisories/ZDI-10-262/ https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15859 http://lists.apple.com/archives/security-announce/2010//Dec/msg00000.html http://osvdb.org/69754 http://support.apple.com/kb/HT4447	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-1818`	vulnerable	2026-06-03 14:30:17.078247	Details available The IPersistPropertyBag2::Read function in QTPlugin.ocx in Apple QuickTime 6.x, 7.x before 7.6.8, and other versions allows remote attackers to execute arbitrary code via the _Marshaled_pUnk attribute, which triggers unmarshalling of an untrusted pointer. Published: 2010-08-31T19:25:00.000Z Updated: 2024-08-07T01:35:53.749Z Open on db.gcve.eu Reference links https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7523 https://www.metasploit.com/redmine/projects/framework/repository/entry/modules/exploits/windows/browser/apple_quicktime_marshaled_punk.rb http://reversemode.com/index.php?option=com_content&task=view&id=69&Itemid=1 http://threatpost.com/en_us/blogs/new-remote-flaw-apple-quicktime-bypasses-aslr-and-dep-083010 http://support.apple.com/kb/ht4339	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-1799`	vulnerable	2026-06-03 14:30:17.013599	Details available Stack-based buffer overflow in the error-logging functionality in Apple QuickTime before 7.6.7 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file. Published: 2010-08-16T18:25:00.000Z Updated: 2024-08-07T01:35:53.717Z Open on db.gcve.eu Reference links http://support.apple.com/kb/HT4290 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11800 http://lists.apple.com/archives/security-announce/2010//Aug/msg00002.html http://www.securityfocus.com/bid/41962	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-1508`	vulnerable	2026-06-03 14:30:15.144859	Details available Heap-based buffer overflow in Apple QuickTime before 7.6.9 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Track Header (aka tkhd) atoms. Published: 2010-12-09T19:00:00.000Z Updated: 2024-08-07T01:28:41.621Z Open on db.gcve.eu Reference links http://lists.apple.com/archives/security-announce/2010//Dec/msg00000.html http://zerodayinitiative.com/advisories/ZDI-10-258/ http://secunia.com/secunia_research/2010-72/ http://support.apple.com/kb/HT4447 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15625	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2010-0530`	vulnerable	2026-06-03 14:30:09.431882	Details available Apple QuickTime before 7.6.9 on Windows sets weak permissions for the Apple Computer directory in the profile of a user account, which allows local users to obtain sensitive information by reading files in this directory. Published: 2010-12-09T19:00:00.000Z Updated: 2024-08-07T00:52:19.296Z Open on db.gcve.eu Reference links https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16036 http://lists.apple.com/archives/security-announce/2010//Dec/msg00000.html http://support.apple.com/kb/HT4447 http://www.securitytracker.com/id?1024829	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-2799`	vulnerable	2026-06-03 14:29:43.107870	Details available Heap-based buffer overflow in Apple QuickTime before 7.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted H.264 movie file. Published: 2009-09-10T21:00:00.000Z Updated: 2024-08-07T06:07:35.952Z Open on db.gcve.eu Reference links http://support.apple.com/kb/HT3859 http://www.securityfocus.com/bid/36328 http://lists.apple.com/archives/security-announce/2009/Sep/msg00002.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6405 http://www.vupen.com/english/advisories/2009/3184	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-2798`	vulnerable	2026-06-03 14:29:43.104591	Details available Heap-based buffer overflow in Apple QuickTime before 7.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted FlashPix file. Published: 2009-09-10T21:00:00.000Z Updated: 2024-08-07T06:07:35.940Z Open on db.gcve.eu Reference links http://support.apple.com/kb/HT3859 http://www.securityfocus.com/bid/36328 http://lists.apple.com/archives/security-announce/2009/Sep/msg00002.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6258 http://www.vupen.com/english/advisories/2009/3184	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-2203`	vulnerable	2026-06-03 14:29:39.842060	Details available Buffer overflow in Apple QuickTime before 7.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted MPEG-4 video file. Published: 2009-09-10T21:00:00.000Z Updated: 2024-08-07T05:44:55.147Z Open on db.gcve.eu Reference links https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5672 http://support.apple.com/kb/HT3859 http://www.securityfocus.com/bid/36328 http://lists.apple.com/archives/security-announce/2009/Sep/msg00002.html http://www.vupen.com/english/advisories/2009/3184	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-2202`	vulnerable	2026-06-03 14:29:39.786658	Details available Apple QuickTime before 7.6.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted H.264 movie file. Published: 2009-09-10T21:00:00.000Z Updated: 2024-08-07T05:44:55.357Z Open on db.gcve.eu Reference links http://support.apple.com/kb/HT3859 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5467 http://www.securityfocus.com/bid/36328 http://lists.apple.com/archives/security-announce/2009/Sep/msg00002.html https://exchange.xforce.ibmcloud.com/vulnerabilities/53127	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-0957`	vulnerable	2026-06-03 14:29:27.361904	Details available Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted JP2 image. Published: 2009-06-02T18:00:00.000Z Updated: 2024-08-07T04:57:17.115Z Open on db.gcve.eu Reference links https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16155 http://secunia.com/advisories/35091 https://exchange.xforce.ibmcloud.com/vulnerabilities/50898 http://support.apple.com/kb/HT3591 http://www.securitytracker.com/id?1022314	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-0956`	vulnerable	2026-06-03 14:29:27.358933	Details available Apple QuickTime before 7.6.2 does not properly initialize memory before use in handling movie files, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a movie containing a user data atom of size zero. Published: 2009-06-02T18:00:00.000Z Updated: 2024-08-07T04:57:17.126Z Open on db.gcve.eu Reference links http://secunia.com/advisories/35091 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16188 http://support.apple.com/kb/HT3591 http://www.securitytracker.com/id?1022314 http://www.vupen.com/english/advisories/2009/1469	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-0955`	vulnerable	2026-06-03 14:29:27.345310	Details available Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted image description atoms in an Apple video file, related to a "sign extension issue." Published: 2009-06-02T18:00:00.000Z Updated: 2024-08-07T04:57:16.643Z Open on db.gcve.eu Reference links http://secunia.com/advisories/35091 https://exchange.xforce.ibmcloud.com/vulnerabilities/50895 http://support.apple.com/kb/HT3591 http://www.securitytracker.com/id?1022314 http://www.vupen.com/english/advisories/2009/1469	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-0954`	vulnerable	2026-06-03 14:29:27.303451	Details available Heap-based buffer overflow in Apple QuickTime before 7.6.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a movie file containing crafted Clipping Region (CRGN) atom types. Published: 2009-06-02T18:00:00.000Z Updated: 2024-08-07T04:57:17.411Z Open on db.gcve.eu Reference links http://secunia.com/advisories/35091 https://exchange.xforce.ibmcloud.com/vulnerabilities/50892 http://support.apple.com/kb/HT3591 http://www.securitytracker.com/id?1022314 http://www.vupen.com/english/advisories/2009/1469	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-0953`	vulnerable	2026-06-03 14:29:27.300706	Details available Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PICT image. Published: 2009-06-02T18:00:00.000Z Updated: 2024-08-07T04:57:17.550Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/50890 http://secunia.com/advisories/35091 http://support.apple.com/kb/HT3591 http://osvdb.org/54876 http://www.securitytracker.com/id?1022314	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-0952`	vulnerable	2026-06-03 14:29:27.297672	Details available Buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted compressed PSD image. Published: 2009-06-02T18:00:00.000Z Updated: 2024-08-07T04:57:17.409Z Open on db.gcve.eu Reference links https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15793 http://secunia.com/advisories/35091 http://support.apple.com/kb/HT3591 http://www.securityfocus.com/bid/35168 http://www.securitytracker.com/id?1022314	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-0951`	vulnerable	2026-06-03 14:29:27.294491	Details available Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted FLC compression file. Published: 2009-06-02T18:00:00.000Z Updated: 2024-08-07T04:57:17.347Z Open on db.gcve.eu Reference links https://exchange.xforce.ibmcloud.com/vulnerabilities/50887 http://secunia.com/advisories/35091 http://support.apple.com/kb/HT3591 http://www.securitytracker.com/id?1022314 http://www.vupen.com/english/advisories/2009/1469	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-0188`	vulnerable	2026-06-03 14:29:22.915400	Details available Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie composed of a Sorenson 3 video file. Published: 2009-06-02T18:00:00.000Z Updated: 2024-08-07T04:24:18.074Z Open on db.gcve.eu Reference links http://secunia.com/advisories/35091 http://www.securityfocus.com/bid/35159 http://support.apple.com/kb/HT3591 http://www.securitytracker.com/id?1022314 http://www.securityfocus.com/archive/1/504007/100/0/threaded	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-0185`	vulnerable	2026-06-03 14:29:22.857968	Details available Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted MS ADPCM encoded audio data in an AVI movie file. Published: 2009-06-02T18:00:00.000Z Updated: 2024-08-07T04:24:18.347Z Open on db.gcve.eu Reference links http://secunia.com/advisories/35091 https://exchange.xforce.ibmcloud.com/vulnerabilities/50894 http://secunia.com/secunia_research/2009-6/ http://support.apple.com/kb/HT3591 http://www.securitytracker.com/id?1022314	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-0007`	vulnerable	2026-06-03 14:29:21.571962	Details available Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a QuickTime movie file containing invalid image width data in JPEG atoms within STSD atoms. Published: 2009-01-21T20:00:00.000Z Updated: 2024-08-07T04:17:10.457Z Open on db.gcve.eu Reference links http://osvdb.org/51530 http://www.us-cert.gov/cas/techalerts/TA09-022A.html http://www.zerodayinitiative.com/advisories/ZDI-09-008/ http://lists.apple.com/archives/security-announce/2009/Jan/msg00000.html http://www.vupen.com/english/advisories/2009/0212	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2009-0006`	vulnerable	2026-06-03 14:29:21.563887	Details available Integer signedness error in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a Cinepak encoded movie file with a crafted MDAT atom that triggers a heap-based buffer overflow. Published: 2009-01-21T20:00:00.000Z Updated: 2024-08-07T04:17:10.308Z Open on db.gcve.eu Reference links http://archives.neohapsis.com/archives/bugtraq/2009-01/0215.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6153 http://osvdb.org/51529 http://www.us-cert.gov/cas/techalerts/TA09-022A.html http://www.securityfocus.com/archive/1/500391/100/0/threaded	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-1453`	vulnerable	2026-06-03 14:27:24.370256	Details available Stack-based buffer overflow in Apple QuickTime before 7.1 allows remote attackers to execute arbitrary code via a crafted QuickDraw PICT image format file containing malformed font information. Published: 2006-05-12T20:00:00.000Z Updated: 2024-08-07T17:12:22.095Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/17951 http://secunia.com/advisories/20069 http://www.vupen.com/english/advisories/2006/1779 http://www.us-cert.gov/cas/techalerts/TA06-132A.html https://exchange.xforce.ibmcloud.com/vulnerabilities/26400	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Apple Quicktime 6.4.0

PURL mappings

Vulnerability references

Contribute