CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
87.8%
Unspecified vulnerability in Apple QuickTime MPEG-2 Playback Component before 7.60.92.0 on Windows allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a crafted MPEG-2 movie.
Vendor | Product | Version | CPE |
---|---|---|---|
apple | quicktime_mpeg-2_playback_component | * | cpe:2.3:a:apple:quicktime_mpeg-2_playback_component:*:*:*:*:*:*:*:* |
microsoft | windows_vista | * | cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:* |
microsoft | windows_xp | * | cpe:2.3:o:microsoft:windows_xp:*:*:*:*:*:*:*:* |
microsoft | windows_xp | * | cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:* |
microsoft | windows_xp | * | cpe:2.3:o:microsoft:windows_xp:*:sp3:*:*:*:*:*:* |
lists.apple.com/archives/security-announce//2009/Jan/msg00001.html
secunia.com/advisories/33642
support.apple.com/kb/HT3404
www.securityfocus.com/bid/33393
www.securitytracker.com/id?1021621
www.vupen.com/english/advisories/2009/0211
exchange.xforce.ibmcloud.com/vulnerabilities/48162
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5974