Lucene search
HistoryAug 15, 2011 - 9:55 p.m.
CVE-2011-0257
cve-2011-0257
apple quicktime
integer signedness error
arbitrary code execution
denial of service
stack-based buffer overflow
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.6 High
AI Score
Confidence
Low
0.959 High
EPSS
Percentile
99.5%
Integer signedness error in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PnSize opcode in a PICT file that triggers a stack-based buffer overflow.
Affected configurations
Node
applequicktimeRangeβ€7.6.9
ORapplequicktimeMatch7.0.0
ORapplequicktimeMatch7.0.1
ORapplequicktimeMatch7.0.2
ORapplequicktimeMatch7.0.3
ORapplequicktimeMatch7.0.4
ORapplequicktimeMatch7.1.0
ORapplequicktimeMatch7.1.1
ORapplequicktimeMatch7.1.2
ORapplequicktimeMatch7.1.3
ORapplequicktimeMatch7.1.4
ORapplequicktimeMatch7.1.5
ORapplequicktimeMatch7.1.6
ORapplequicktimeMatch7.2.0
ORapplequicktimeMatch7.2.1
ORapplequicktimeMatch7.3.0
ORapplequicktimeMatch7.3.1
ORapplequicktimeMatch7.3.1.70
ORapplequicktimeMatch7.4.0
ORapplequicktimeMatch7.4.1
ORapplequicktimeMatch7.4.5
ORapplequicktimeMatch7.5.0
ORapplequicktimeMatch7.5.5
ORapplequicktimeMatch7.6.0
ORapplequicktimeMatch7.6.1
ORapplequicktimeMatch7.6.2
ORapplequicktimeMatch7.6.5
ORapplequicktimeMatch7.6.6
ORapplequicktimeMatch7.6.7
ORapplequicktimeMatch7.6.8
ORapplequicktimeMatch7.66.71.0
ORapplequicktimeMatch7.67.75.0
Related
seebug
seebug
QQPLAYER PICT PnSize Buffer Overflow WIN7 DEP_ASLR BYPASS
2011-11-21 00:00:00
Apple QuickTime PICTζδ»Άζ ηΌε²εΊζΊ’εΊζΌζ΄
2011-08-15 00:00:00
Apple QuickTime PICT PnSize Buffer Overflow
2014-07-01 00:00:00
saint
saint
QuickTime PICT PnSize Stack Overflow
2011-08-29 00:00:00
QuickTime PICT PnSize Stack Overflow
2011-08-29 00:00:00
QuickTime PICT PnSize Stack Overflow
2011-08-29 00:00:00
cvelist
cvelist
CVE-2011-0257
2011-08-15 21:00:00
metasploit
metasploit
Apple QuickTime PICT PnSize Buffer Overflow
2011-09-03 21:17:58
prion
prion
Integer overflow
2011-08-15 21:55:00
nvd
nvd
CVE-2011-0257
2011-08-15 21:55:01
packetstorm
packetstorm
QQPLAYER PICT PnSize Buffer Overflow
2011-11-21 00:00:00
Apple QuickTime PICT PnSize Buffer Overflow
2011-09-04 00:00:00
zdi
zdi
Apple QuickTime PICT Image PnSize Opcode Remote Code Execution Vulnerability
2011-08-08 00:00:00
securityvulns
securityvulns
ZDI-11-252: Apple QuickTime PICT Image PnSize Opcode Remote Code Execution Vulnerability
2011-08-17 00:00:00
Apple QuickTime multiple security vulnerabilities
2011-09-05 00:00:00
checkpoint_advisories
checkpoint_advisories
exploitdb
exploitdb
QQPLAYER Player 3.2 - PICT PnSize Buffer Overflow Windows (ASLR + DEP Bypass) (Metasploit)
2011-11-21 00:00:00
Apple QuickTime - PICT PnSize Buffer Overflow (Metasploit)
2011-09-03 00:00:00
openvas
openvas
Apple QuickTime Multiple Buffer Overflow Vulnerabilities (Windows)
2011-08-18 00:00:00
Apple QuickTime Multiple Buffer Overflow Vulnerabilities - Windows
2011-08-18 00:00:00
nessus
nessus
QuickTime < 7.7 Multiple Vulnerabilities (Mac OS X)
2011-08-04 00:00:00
QuickTime < 7.7 Multiple Vulnerabilities (Windows)
2011-08-04 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.6 High
AI Score
Confidence
Low
0.959 High
EPSS
Percentile
99.5%
Related for CVE-2011-0257