Unrated severityNVD Advisory· Published Sep 11, 2008· Updated Jun 16, 2026
CVE-2008-3627
CVE-2008-3627
Description
Apple QuickTime before 7.5.5 does not properly handle (1) MDAT atoms in MP4 video files within QuickTimeH264.qtx, (2) MDAT atoms in mov video files within QuickTimeH264.scalar, and (3) AVC1 atoms in an unknown media type within an unspecified component, which allows remote attackers to execute arbitrary code or cause a denial of service (heap corruption and application crash) via a crafted, H.264 encoded movie file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:apple:quicktime:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:apple:quicktime:*:*:*:*:*:*:*:*range: <7.5.5
- (no CPE)range: <7.5.5
Patches
Vulnerability mechanics
References
13- www.securityfocus.com/bid/31086nvdPatchThird Party AdvisoryVDB Entry
- lists.apple.com/archives/security-announce//2008/Sep/msg00000.htmlnvdMailing ListVendor Advisory
- secunia.com/advisories/31821nvdThird Party Advisory
- securitytracker.com/idnvdThird Party AdvisoryVDB Entry
- support.apple.com/kb/HT3027nvdVendor Advisory
- www.vupen.com/english/advisories/2008/2527nvdThird Party Advisory
- www.zerodayinitiative.com/advisories/ZDI-08-060/nvdThird Party AdvisoryVDB Entry
- www.zerodayinitiative.com/advisories/ZDI-08-061/nvdThird Party AdvisoryVDB Entry
- www.zerodayinitiative.com/advisories/ZDI-08-062/nvdThird Party AdvisoryVDB Entry
- oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16164nvdThird Party Advisory
- www.securityfocus.com/archive/1/496163/100/0/threadednvd
- www.securityfocus.com/archive/1/496175/100/0/threadednvd
- www.securityfocus.com/archive/1/496176/100/0/threadednvd
News mentions
0No linked articles in our index yet.