Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2011-3219
HistoryOct 12, 2011 - 6:55 p.m.

CVE-2011-3219

2011-10-1218:55:01
CWE-119
[email protected]
web.nvd.nist.gov
40
cve-2011-3219
buffer overflow
coremedia
apple itunes
remote attackers
arbitrary code execution
denial of service
crafted movie file
h.264 encoding
nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.7 High

AI Score

Confidence

High

0.058 Low

EPSS

Percentile

93.4%

JSON

Buffer overflow in CoreMedia, as used in Apple iTunes before 10.5, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with H.264 encoding.

Affected configurations

NVD
Node
appleitunesRange10.4.1
OR
appleitunesMatch4.0.0
OR
appleitunesMatch4.0.1
OR
appleitunesMatch4.1.0
OR
appleitunesMatch4.2.0
OR
appleitunesMatch4.5
OR
appleitunesMatch4.5.0
OR
appleitunesMatch4.6
OR
appleitunesMatch4.6.0
OR
appleitunesMatch4.7
OR
appleitunesMatch4.7.0
OR
appleitunesMatch4.7.1
OR
appleitunesMatch4.7.2
OR
appleitunesMatch4.8.0
OR
appleitunesMatch4.9.0
OR
appleitunesMatch5.0
OR
appleitunesMatch5.0.0
OR
appleitunesMatch5.0.1
OR
appleitunesMatch6.0.0
OR
appleitunesMatch6.0.1
OR
appleitunesMatch6.0.2
OR
appleitunesMatch6.0.3
OR
appleitunesMatch6.0.4
OR
appleitunesMatch6.0.4.2
OR
appleitunesMatch6.0.5
OR
appleitunesMatch7.0.0
OR
appleitunesMatch7.0.1
OR
appleitunesMatch7.0.2
OR
appleitunesMatch7.1.0
OR
appleitunesMatch7.1.1
OR
appleitunesMatch7.2.0
OR
appleitunesMatch7.3.0
OR
appleitunesMatch7.3.1
OR
appleitunesMatch7.3.2
OR
appleitunesMatch7.4
OR
appleitunesMatch7.4.0
OR
appleitunesMatch7.4.1
OR
appleitunesMatch7.4.2
OR
appleitunesMatch7.4.3
OR
appleitunesMatch7.5
OR
appleitunesMatch7.5.0
OR
appleitunesMatch7.6
OR
appleitunesMatch7.6.0
OR
appleitunesMatch7.6.1
OR
appleitunesMatch7.6.2
OR
appleitunesMatch7.7
OR
appleitunesMatch7.7.0
OR
appleitunesMatch7.7.1
OR
appleitunesMatch8.0.0
OR
appleitunesMatch8.0.1
OR
appleitunesMatch8.0.2
OR
appleitunesMatch8.1
OR
appleitunesMatch8.1.1
OR
appleitunesMatch8.2
OR
appleitunesMatch8.2.1
OR
appleitunesMatch9.0.0
OR
appleitunesMatch9.0.1
OR
appleitunesMatch9.0.2
OR
appleitunesMatch9.0.3
OR
appleitunesMatch9.2
OR
appleitunesMatch9.2.1
OR
appleitunesMatch10.0
OR
appleitunesMatch10.0.1
OR
appleitunesMatch10.1
OR
appleitunesMatch10.1.1
OR
appleitunesMatch10.1.2
OR
appleitunesMatch10.2
OR
appleitunesMatch10.3
OR
appleitunesMatch10.3.1
OR
appleitunesMatch10.4
AND
microsoftwindows_7
OR
microsoftwindows_vista
OR
microsoftwindows_vistasp1
OR
microsoftwindows_vistasp2
OR
microsoftwindows_xpsp2
OR
microsoftwindows_xpsp3

Related

nvd 1
zdi 1
securityvulns 7
prion 1
seebug 2
cvelist 1
nessus 7
openvas 6
nvd
nvd
CVE-2011-3219
2011-10-12 18:55:01
zdi
zdi
Apple QuickTime H264 Stream frame_cropping Remote Code Execution Vulnerability
2011-10-26 00:00:00
securityvulns
securityvulns
ZDI-11-303 : Apple QuickTime H264 Stream frame_cropping Remote Code Execution Vulnerability
2011-10-31 00:00:00
APPLE-SA-2011-10-26-1 QuickTime 7.7.1
2011-10-31 00:00:00
Apple QuickTime multiple security vulnerabilities
2012-08-20 00:00:00
prion
prion
Buffer overflow
2011-10-12 18:55:00
seebug
seebug
Apple Mac OS X CoreMedia H.264编码视频文件缓冲区溢出漏洞
2011-10-27 00:00:00
Apple iTunes多个安全漏洞
2011-10-13 00:00:00
cvelist
cvelist
CVE-2011-3219
2011-10-12 18:00:00
nessus
nessus
QuickTime < 7.7.1 Multiple Vulnerabilities
2011-10-27 00:00:00
QuickTime < 7.7.1 Multiple Vulnerabilities
2011-10-27 00:00:00
QuickTime < 7.7.1 Multiple Vulnerabilities (Windows)
2011-10-28 00:00:00
openvas
openvas
Apple QuickTime Multiple Denial of Service Vulnerabilities - Windows
2011-11-03 00:00:00
Apple QuickTime Multiple Denial of Service Vulnerabilities - (Windows)
2011-11-03 00:00:00
Mac OS X v10.6.8 Multiple Vulnerabilities (2011-006)
2011-10-20 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.7 High

AI Score

Confidence

High

0.058 Low

EPSS

Percentile

93.4%

JSON
Related for CVE-2011-3219
nvd1zdi1securityvulns7prion1seebug2cvelist1nessus7openvas6