Lucene search

FreeBSD24F6B1EB-43D5-11DB-81E1-000E0C2E438A

HistorySep 08, 2006 - 12:00 a.m.

win32-codecs -- multiple vulnerabilities

2006-09-0800:00:00

vuxml.freebsd.org

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

EPSS

0.741

Percentile

98.2%

JSON

The Apple Security Team reports that there are multiple
vulnerabilities within QuickTime (one of the plugins for
win32-codecs). A remote attacker capable of creating a
malicious SGI image, FlashPix, FLC movie, or a QuickTime
movie can possibly lead to execution of arbitrary code or
cause a Denial of Service (application crash).
Users who have QuickTime (/win32-codecs) as a browser plugin
may be vulnerable to remote code execution by visiting a
website containing a malicious SGI image, FlashPix, FLC movie
or a QuickTime movie.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchwin32-codecs< 3.1.0.p8_1,1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
FreeBSD	any	noarch	win32-codecs	< 3.1.0.p8_1,1	UNKNOWN

References

docs.info.apple.com/article.html?artnum=304357

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

EPSS

0.741

Percentile

98.2%

JSON

Related for 24F6B1EB-43D5-11DB-81E1-000E0C2E438A