CVE-2013-1032

Published: Sep 16, 2013Modified: Apr 29, 2026

6.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability: 8.6 / Impact: 6.4

Source: NVD

Description

QuickTime in Apple Mac OS X before 10.8.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted idsc atom in a QuickTime movie file.

Affected (2)

Products: Apple: Quicktime, Mac Os X

Apple

2 products

Quicktime

Mac Os X

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Apple Quicktime	All versions

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Apple Mac Os X	Before 10.8.5

Related CWEs

CWE-787

Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

References (6)

http://lists.apple.com/archives/security-announce/2013/Sep/msg00002.html

Source: product-security@apple.com

Release NotesVendor Advisory

http://support.apple.com/kb/HT5880

Source: product-security@apple.com

Release NotesVendor Advisory

http://support.apple.com/kb/HT6151

Source: product-security@apple.com

Release NotesVendor Advisory

http://lists.apple.com/archives/security-announce/2013/Sep/msg00002.html

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

http://support.apple.com/kb/HT5880

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

http://support.apple.com/kb/HT6151

Source: af854a3a-2127-422b-91ae-364da2661108

Release NotesVendor Advisory

Timeline

No history available yet.