Quicktime

quicktime

Vendor: Apple • 246 CVEs

CVEs (246)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2009-0957 1Apple 1Quicktime Apr 23, 2026 Jun 2, 2009 N/A· v4 N/A· v3 9.3 HIGH· v2 Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted JP2 image.
CVE-2009-0956 1Apple 1Quicktime Apr 23, 2026 Jun 2, 2009 N/A· v4 N/A· v3 9.3 HIGH· v2 Apple QuickTime before 7.6.2 does not properly initialize memory before use in handling movie files, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a movie co...Show more Apple QuickTime before 7.6.2 does not properly initialize memory before use in handling movie files, which allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a movie containing a user data atom of size zero.Show less
CVE-2009-0955 1Apple 1Quicktime Apr 23, 2026 Jun 2, 2009 N/A· v4 N/A· v3 9.3 HIGH· v2 Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted image description atoms in an Apple video file, related to a "sign extension iss...Show more Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted image description atoms in an Apple video file, related to a "sign extension issue."Show less
CVE-2009-0954 1Apple 1Quicktime Apr 23, 2026 Jun 2, 2009 N/A· v4 N/A· v3 9.3 HIGH· v2 Heap-based buffer overflow in Apple QuickTime before 7.6.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a movie file containing crafted Clipping Region...Show more Heap-based buffer overflow in Apple QuickTime before 7.6.2 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a movie file containing crafted Clipping Region (CRGN) atom types.Show less
CVE-2009-0953 1Apple 1Quicktime Apr 23, 2026 Jun 2, 2009 N/A· v4 N/A· v3 9.3 HIGH· v2 Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PICT image.
CVE-2009-0952 1Apple 1Quicktime Apr 23, 2026 Jun 2, 2009 N/A· v4 N/A· v3 9.3 HIGH· v2 Buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted compressed PSD image.
CVE-2009-0951 1Apple 1Quicktime Apr 23, 2026 Jun 2, 2009 N/A· v4 N/A· v3 9.3 HIGH· v2 Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted FLC compression file.
CVE-2009-0188 1Apple 1Quicktime Apr 23, 2026 Jun 2, 2009 N/A· v4 N/A· v3 9.3 HIGH· v2 Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie composed of a Sorenson 3 video file.
CVE-2009-0185 1Apple 1Quicktime Apr 23, 2026 Jun 2, 2009 N/A· v4 N/A· v3 9.3 HIGH· v2 Heap-based buffer overflow in Apple QuickTime before 7.6.2 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted MS ADPCM encoded audio data in an AVI movie file.
CVE-2009-0007 1Apple 1Quicktime Apr 23, 2026 Jan 21, 2009 N/A· v4 N/A· v3 9.3 HIGH· v2 Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a QuickTime movie file containing invalid im...Show more Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a QuickTime movie file containing invalid image width data in JPEG atoms within STSD atoms.Show less
CVE-2009-0006 1Apple 1Quicktime Apr 23, 2026 Jan 21, 2009 N/A· v4 N/A· v3 9.3 HIGH· v2 Integer signedness error in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a Cinepak encoded movie file with a crafted MD...Show more Integer signedness error in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a Cinepak encoded movie file with a crafted MDAT atom that triggers a heap-based buffer overflow.Show less
CVE-2009-0005 1Apple 1Quicktime Apr 23, 2026 Jan 21, 2009 N/A· v4 N/A· v3 9.3 HIGH· v2 Unspecified vulnerability in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a crafted H.263 encoded movie file that trigg...Show more Unspecified vulnerability in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a crafted H.263 encoded movie file that triggers memory corruption.Show less
CVE-2009-0004 1Apple 1Quicktime Apr 23, 2026 Jan 21, 2009 N/A· v4 N/A· v3 9.3 HIGH· v2 Buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a crafted MP3 audio file.
CVE-2009-0003 1Apple 1Quicktime Apr 23, 2026 Jan 21, 2009 N/A· v4 N/A· v3 9.3 HIGH· v2 Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via an AVI movie file with an invalid nBlockAlign value i...Show more Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via an AVI movie file with an invalid nBlockAlign value in the _WAVEFORMATEX structure.Show less
CVE-2009-0002 1Apple 1Quicktime Apr 23, 2026 Jan 21, 2009 N/A· v4 N/A· v3 9.3 HIGH· v2 Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a QTVR movie file with crafted THKD atoms.
CVE-2009-0001 1Apple 1Quicktime Apr 23, 2026 Jan 21, 2009 N/A· v4 N/A· v3 9.3 HIGH· v2 Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and possibly execute arbitrary code via a crafted RTSP URL.
CVE-2008-5406 1Apple 2Itunes Quicktime Apr 23, 2026 Dec 10, 2008 N/A· v4 N/A· v3 9.3 HIGH· v2 Stack-based buffer overflow in Apple QuickTime Player 7.5.5 and iTunes 8.0.2.20 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a MOV file with "long argum...Show more Stack-based buffer overflow in Apple QuickTime Player 7.5.5 and iTunes 8.0.2.20 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a MOV file with "long arguments," related to an "off by one overflow."Show less
CVE-2008-4116 1Apple 2Itunes Quicktime Apr 23, 2026 Sep 18, 2008 N/A· v4 N/A· v3 9.3 HIGH· v2 Buffer overflow in Apple QuickTime 7.5.5 and iTunes 8.0 allows remote attackers to cause a denial of service (browser crash) or possibly execute arbitrary code via a long type attribute in a quicktime tag (1) on a web pa...Show more Buffer overflow in Apple QuickTime 7.5.5 and iTunes 8.0 allows remote attackers to cause a denial of service (browser crash) or possibly execute arbitrary code via a long type attribute in a quicktime tag (1) on a web page or embedded in a (2) .mp4 or (3) .mov file, possibly related to the Check_stack_cookie function and an off-by-one error that leads to a heap-based buffer overflow.Show less
CVE-2008-3635 2Apple Intel 2Indeo Quicktime Apr 23, 2026 Sep 11, 2008 N/A· v4 N/A· v3 9.3 HIGH· v2 Stack-based buffer overflow in QuickTimeInternetExtras.qtx in an unspecified third-party Indeo v3.2 (aka IV32) codec for QuickTime, when used with Apple QuickTime before 7.5.5 on Windows, allows remote attackers to execu...Show more Stack-based buffer overflow in QuickTimeInternetExtras.qtx in an unspecified third-party Indeo v3.2 (aka IV32) codec for QuickTime, when used with Apple QuickTime before 7.5.5 on Windows, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file.Show less
CVE-2008-3629 1Apple 1Quicktime Apr 23, 2026 Sep 11, 2008 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Apple QuickTime before 7.5.5 allows remote attackers to cause a denial of service (application crash) via a crafted PICT image that triggers an out-of-bounds read.

Previous 1...678...13 Next