Unrated severityNVD Advisory· Published Dec 10, 2008· Updated Jun 16, 2026
CVE-2008-5406
CVE-2008-5406
Description
Stack-based buffer overflow in Apple QuickTime Player 7.5.5 and iTunes 8.0.2.20 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a MOV file with "long arguments," related to an "off by one overflow."
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:apple:itunes:8.0.2.20:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:apple:itunes:8.0.2.20:*:*:*:*:*:*:*
- (no CPE)range: 8.0.2.20
- cpe:2.3:a:apple:quicktime:7.5.5:*:*:*:*:*:*:*
- Range: 7.5.5
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.