Unrated severityNVD Advisory· Published Dec 31, 2005· Updated Apr 16, 2026
CVE-2005-2340
CVE-2005-2340
Description
Heap-based buffer overflow in Apple Quicktime before 7.0.4 allows remote attackers to execute arbitrary code via a crafted (1) QuickTime Image File (QTIF), (2) PICT, or (3) JPEG format image with a long data field.
Affected products
4cpe:2.3:a:apple:quicktime:*:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:apple:quicktime:*:*:*:*:*:*:*:*range: <=7.0.3
- cpe:2.3:a:apple:quicktime:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:quicktime:7.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:quicktime:7.0.2:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
20- docs.info.apple.com/article.htmlnvdPatch
- secunia.com/advisories/18370nvdPatchVendor Advisory
- securitytracker.com/idnvdPatch
- www.kb.cert.org/vuls/id/629845nvdPatchThird Party AdvisoryUS Government Resource
- www.kb.cert.org/vuls/id/687201nvdPatchThird Party AdvisoryUS Government Resource
- www.osvdb.org/22333nvdPatch
- www.osvdb.org/22334nvdPatch
- www.osvdb.org/22335nvdPatch
- www.securityfocus.com/bid/16202nvdPatch
- www.us-cert.gov/cas/techalerts/TA06-011A.htmlnvdPatchThird Party AdvisoryUS Government Resource
- www.securityfocus.com/bid/16212nvdExploit
- archives.neohapsis.com/archives/fulldisclosure/2006-01/0398.htmlnvdVendor Advisory
- www.cirt.dk/advisories/cirt-41-advisory.pdfnvdVendor Advisory
- www.vupen.com/english/advisories/2006/0128nvdVendor Advisory
- archives.neohapsis.com/archives/fulldisclosure/2006-01/0392.htmlnvd
- archives.neohapsis.com/archives/fulldisclosure/2006-01/0402.htmlnvd
- securityreason.com/securityalert/332nvd
- www.securityfocus.com/archive/1/421547/100/0/threadednvd
- www.securityfocus.com/archive/1/421566/100/0/threadednvd
- exchange.xforce.ibmcloud.com/vulnerabilities/24054nvd
News mentions
0No linked articles in our index yet.