Lucene search

[email protected]NVD:CVE-2011-3219

HistoryOct 12, 2011 - 6:55 p.m.

CVE-2011-3219

2011-10-1218:55:01

CWE-119

[email protected]

web.nvd.nist.gov

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.7 High

AI Score

Confidence

High

0.058 Low

EPSS

Percentile

93.4%

JSON

Buffer overflow in CoreMedia, as used in Apple iTunes before 10.5, allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with H.264 encoding.

Affected configurations

NVD

Node

appleitunesRange≤10.4.1

appleitunesMatch4.0.0

appleitunesMatch4.0.1

appleitunesMatch4.1.0

appleitunesMatch4.2.0

appleitunesMatch4.5

appleitunesMatch4.5.0

appleitunesMatch4.6

appleitunesMatch4.6.0

appleitunesMatch4.7

appleitunesMatch4.7.0

appleitunesMatch4.7.1

appleitunesMatch4.7.2

appleitunesMatch4.8.0

appleitunesMatch4.9.0

appleitunesMatch5.0

appleitunesMatch5.0.0

appleitunesMatch5.0.1

appleitunesMatch6.0.0

appleitunesMatch6.0.1

appleitunesMatch6.0.2

appleitunesMatch6.0.3

appleitunesMatch6.0.4

appleitunesMatch6.0.4.2

appleitunesMatch6.0.5

appleitunesMatch7.0.0

appleitunesMatch7.0.1

appleitunesMatch7.0.2

appleitunesMatch7.1.0

appleitunesMatch7.1.1

appleitunesMatch7.2.0

appleitunesMatch7.3.0

appleitunesMatch7.3.1

appleitunesMatch7.3.2

appleitunesMatch7.4

appleitunesMatch7.4.0

appleitunesMatch7.4.1

appleitunesMatch7.4.2

appleitunesMatch7.4.3

appleitunesMatch7.5

appleitunesMatch7.5.0

appleitunesMatch7.6

appleitunesMatch7.6.0

appleitunesMatch7.6.1

appleitunesMatch7.6.2

appleitunesMatch7.7

appleitunesMatch7.7.0

appleitunesMatch7.7.1

appleitunesMatch8.0.0

appleitunesMatch8.0.1

appleitunesMatch8.0.2

appleitunesMatch8.1

appleitunesMatch8.1.1

appleitunesMatch8.2

appleitunesMatch8.2.1

appleitunesMatch9.0.0

appleitunesMatch9.0.1

appleitunesMatch9.0.2

appleitunesMatch9.0.3

appleitunesMatch9.2

appleitunesMatch9.2.1

appleitunesMatch10.0

appleitunesMatch10.0.1

appleitunesMatch10.1

appleitunesMatch10.1.1

appleitunesMatch10.1.2

appleitunesMatch10.2

appleitunesMatch10.3

appleitunesMatch10.3.1

appleitunesMatch10.4

AND

microsoftwindows_7

microsoftwindows_vista

microsoftwindows_vistasp1

microsoftwindows_vistasp2

microsoftwindows_xpsp2

microsoftwindows_xpsp3

References

lists.apple.com/archives/Security-announce/2011//Oct/msg00000.html

lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html

osvdb.org/76374

support.apple.com/kb/HT4981

support.apple.com/kb/HT5002

support.apple.com/kb/HT5016

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A17228

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

8.7 High

AI Score

Confidence

High

0.058 Low

EPSS

Percentile

93.4%

JSON

Related for NVD:CVE-2011-3219

zdi1 securityvulns7 prion1 cve1 seebug2 cvelist1 nessus7 openvas6