Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
zdiMatt "j00ru" JurczykZDI-11-252
HistoryAug 08, 2011 - 12:00 a.m.

Apple QuickTime PICT Image PnSize Opcode Remote Code Execution Vulnerability

2011-08-0800:00:00
Matt "j00ru" Jurczyk
www.zerodayinitiative.com
15

0.959 High

EPSS

Percentile

99.5%

JSON

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Apple Quicktime. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way Quicktime handles the PnSize PICT opcode. It converts an unsigned 16 bit value into a signed 32 bit value. This value is later used as the size parameter for a memory copy function that copies from the file onto the stack. The results in a stack based buffer overflow that allows for remote code execution under the context of the current user.

Related

seebug 3
saint 4
cvelist 1
metasploit 1
prion 1
nvd 1
packetstorm 2
securityvulns 2
cve 1
checkpoint_advisories 1
exploitdb 2
openvas 2
nessus 2
seebug
seebug
QQPLAYER PICT PnSize Buffer Overflow WIN7 DEP_ASLR BYPASS
2011-11-21 00:00:00
Apple QuickTime PICTζ–‡δ»Άζ ˆηΌ“ε†²εŒΊζΊ’ε‡ΊζΌζ΄ž
2011-08-15 00:00:00
Apple QuickTime PICT PnSize Buffer Overflow
2014-07-01 00:00:00
saint
saint
QuickTime PICT PnSize Stack Overflow
2011-08-29 00:00:00
QuickTime PICT PnSize Stack Overflow
2011-08-29 00:00:00
QuickTime PICT PnSize Stack Overflow
2011-08-29 00:00:00
cvelist
cvelist
CVE-2011-0257
2011-08-15 21:00:00
metasploit
metasploit
Apple QuickTime PICT PnSize Buffer Overflow
2011-09-03 21:17:58
prion
prion
Integer overflow
2011-08-15 21:55:00
nvd
nvd
CVE-2011-0257
2011-08-15 21:55:01
packetstorm
packetstorm
Apple QuickTime PICT PnSize Buffer Overflow
2011-09-04 00:00:00
QQPLAYER PICT PnSize Buffer Overflow
2011-11-21 00:00:00
securityvulns
securityvulns
ZDI-11-252: Apple QuickTime PICT Image PnSize Opcode Remote Code Execution Vulnerability
2011-08-17 00:00:00
Apple QuickTime multiple security vulnerabilities
2011-09-05 00:00:00
cve
cve
CVE-2011-0257
2011-08-15 21:55:01
checkpoint_advisories
checkpoint_advisories
Apple QuickTime PICT Image PnSize Opcode Stack Buffer Overflow (CVE-2011-0257)
2011-11-01 00:00:00
exploitdb
exploitdb
QQPLAYER Player 3.2 - PICT PnSize Buffer Overflow Windows (ASLR + DEP Bypass) (Metasploit)
2011-11-21 00:00:00
Apple QuickTime - PICT PnSize Buffer Overflow (Metasploit)
2011-09-03 00:00:00
openvas
openvas
Apple QuickTime Multiple Buffer Overflow Vulnerabilities (Windows)
2011-08-18 00:00:00
Apple QuickTime Multiple Buffer Overflow Vulnerabilities - Windows
2011-08-18 00:00:00
nessus
nessus
QuickTime < 7.7 Multiple Vulnerabilities (Mac OS X)
2011-08-04 00:00:00
QuickTime < 7.7 Multiple Vulnerabilities (Windows)
2011-08-04 00:00:00

0.959 High

EPSS

Percentile

99.5%

JSON
Related for ZDI-11-252
seebug3saint4cvelist1metasploit1prion1nvd1packetstorm2securityvulns2cve1checkpoint_advisories1exploitdb2openvas2nessus2