CVE-2010-4009

Published: Dec 9, 2010Modified: Apr 29, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Integer overflow in Apple QuickTime before 7.6.9 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file.

Affected (52)

Products: Apple: Quicktime

Apple

1 product

Quicktime

Configuration A

52 vulnerable

Vulnerable Software	Affected Versions
Apple Quicktime	Up to 7.6.8
Apple Quicktime	Version 3.0
Apple Quicktime	Version 4.1.2
Apple Quicktime	Version 5.0.1
Apple Quicktime	Version 5.0.2
Apple Quicktime	Version 5.0
Apple Quicktime	Version 6.0.0
Apple Quicktime	Version 6.0.1
Apple Quicktime	Version 6.0.2
Apple Quicktime	Version 6.0
Apple Quicktime	Version 6.1.0
Apple Quicktime	Version 6.1.1
Apple Quicktime	Version 6.1
Apple Quicktime	Version 6.2.0
Apple Quicktime	Version 6.3.0
Apple Quicktime	Version 6.4.0
Apple Quicktime	Version 6.5.0
Apple Quicktime	Version 6.5.1
Apple Quicktime	Version 6.5.2
Apple Quicktime	Version 6.5
Apple Quicktime	Version 7.0.0
Apple Quicktime	Version 7.0.1
Apple Quicktime	Version 7.0.2
Apple Quicktime	Version 7.0.3
Apple Quicktime	Version 7.0.4
Apple Quicktime	Version 7.0
Apple Quicktime	Version 7.1.0
Apple Quicktime	Version 7.1.1
Apple Quicktime	Version 7.1.2
Apple Quicktime	Version 7.1.3
Apple Quicktime	Version 7.1.4
Apple Quicktime	Version 7.1.5
Apple Quicktime	Version 7.1.6
Apple Quicktime	Version 7.1
Apple Quicktime	Version 7.2.1
Apple Quicktime	Version 7.2
Apple Quicktime	Version 7.3.0
Apple Quicktime	Version 7.3.1.70
Apple Quicktime	Version 7.3.1
Apple Quicktime	Version 7.3
Apple Quicktime	Version 7.4.0
Apple Quicktime	Version 7.4.1
Apple Quicktime	Version 7.4.5
Apple Quicktime	Version 7.4
Apple Quicktime	Version 7.5.0
Apple Quicktime	Version 7.5.5
Apple Quicktime	Version 7.6.0
Apple Quicktime	Version 7.6.1
Apple Quicktime	Version 7.6.2
Apple Quicktime	Version 7.6.5
Apple Quicktime	Version 7.6.6
Apple Quicktime	Version 7.6.7