Quicktime

CVEs (288)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	Published	Description
CVE-2011-3428	Apple Inc. Quicktime	Cri	0.64	9.8	0.02	Apr 24, 2017	Buffer overflow in QuickTime before 7.7.1 for Windows allows remote attackers to execute arbitrary code.
CVE-2016-4598	Apple Inc. Quicktime	Cri	0.64	9.8	0.03	Jul 22, 2016	QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted image.
CVE-2016-4602	Apple Inc. Quicktime	Hig	0.57	8.8	0.02	Jul 22, 2016	QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted FlashPix bitmap image, a different vulnerability than CVE-2016-4596, CVE-2016-4597, and CVE-2016-4600.
CVE-2016-4601	Apple Inc. Quicktime	Hig	0.57	8.8	0.02	Jul 22, 2016	QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted SGI image.
CVE-2016-4600	Apple Inc. Quicktime	Hig	0.57	8.8	0.02	Jul 22, 2016	QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted FlashPix bitmap image, a different vulnerability than CVE-2016-4596, CVE-2016-4597, and CVE-2016-4602.
CVE-2016-4597	Apple Inc. Quicktime	Hig	0.57	8.8	0.02	Jul 22, 2016	QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted FlashPix bitmap image, a different vulnerability than CVE-2016-4596, CVE-2016-4600, and CVE-2016-4602.
CVE-2016-4596	Apple Inc. Quicktime	Hig	0.57	8.8	0.02	Jul 22, 2016	QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted FlashPix bitmap image, a different vulnerability than CVE-2016-4597, CVE-2016-4600, and CVE-2016-4602.
CVE-2016-1848	Apple Inc. Quicktime	Hig	0.54	7.8	0.05	May 20, 2016	QuickTime in Apple OS X before 10.11.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file.
CVE-2016-1767	Apple Inc. Quicktime	Hig	0.54	7.8	0.05	Mar 24, 2016	QuickTime in Apple OS X before 10.11.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted FlashPix image, a different vulnerability than CVE-2016-1768.
CVE-2017-2218	Apple Inc. Quicktime	Hig	0.51	7.8	0.01	Jul 7, 2017	Untrusted search path vulnerability in Installer of QuickTime for Windows allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
CVE-2017-2413	Apple Inc. Quicktime	Hig	0.51	7.8	0.02	Apr 2, 2017	An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "QuickTime" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted media file.
CVE-2016-4599	Apple Inc. Quicktime	Hig	0.51	7.8	0.02	Jul 22, 2016	QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Photoshop document.
CVE-2015-7117	Apple Inc. Quicktime	Med	0.43	6.6	0.02	Jan 9, 2016	Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7086, CVE-2015-7087, CVE-2015-7088,…
CVE-2015-7092	Apple Inc. Quicktime	Med	0.43	6.6	0.02	Jan 9, 2016	Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow and application crash) via a crafted TXXX frame within an ID3 tag in MP3 data in a movie file, a different vulnerability than CVE-2015-7085,…
CVE-2015-7091	Apple Inc. Quicktime	Med	0.43	6.6	0.01	Jan 9, 2016	Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7086, CVE-2015-7087, CVE-2015-7088,…
CVE-2015-7090	Apple Inc. Quicktime	Med	0.43	6.6	0.02	Jan 9, 2016	Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7086, CVE-2015-7087, CVE-2015-7088,…
CVE-2015-7089	Apple Inc. Quicktime	Med	0.43	6.6	0.02	Jan 9, 2016	Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7086, CVE-2015-7087, CVE-2015-7088,…
CVE-2015-7088	Apple Inc. Quicktime	Med	0.43	6.6	0.02	Jan 9, 2016	Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7086, CVE-2015-7087, CVE-2015-7089,…
CVE-2015-7087	Apple Inc. Quicktime	Med	0.43	6.6	0.02	Jan 9, 2016	Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7086, CVE-2015-7088, CVE-2015-7089,…
CVE-2015-7086	Apple Inc. Quicktime	Med	0.43	6.6	0.01	Jan 9, 2016	Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7087, CVE-2015-7088, CVE-2015-7089,…

CVE-2011-3428CriApr 24, 2017
Apple Inc.
Quicktime
risk 0.64cvss 9.8epss 0.02
Buffer overflow in QuickTime before 7.7.1 for Windows allows remote attackers to execute arbitrary code.
CVE-2016-4598CriJul 22, 2016
Apple Inc.
Quicktime
risk 0.64cvss 9.8epss 0.03
QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted image.
CVE-2016-4602HigJul 22, 2016
Apple Inc.
Quicktime
risk 0.57cvss 8.8epss 0.02
QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted FlashPix bitmap image, a different vulnerability than CVE-2016-4596, CVE-2016-4597, and CVE-2016-4600.
CVE-2016-4601HigJul 22, 2016
Apple Inc.
Quicktime
risk 0.57cvss 8.8epss 0.02
QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted SGI image.
CVE-2016-4600HigJul 22, 2016
Apple Inc.
Quicktime
risk 0.57cvss 8.8epss 0.02
QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted FlashPix bitmap image, a different vulnerability than CVE-2016-4596, CVE-2016-4597, and CVE-2016-4602.
CVE-2016-4597HigJul 22, 2016
Apple Inc.
Quicktime
risk 0.57cvss 8.8epss 0.02
QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted FlashPix bitmap image, a different vulnerability than CVE-2016-4596, CVE-2016-4600, and CVE-2016-4602.
CVE-2016-4596HigJul 22, 2016
Apple Inc.
Quicktime
risk 0.57cvss 8.8epss 0.02
QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted FlashPix bitmap image, a different vulnerability than CVE-2016-4597, CVE-2016-4600, and CVE-2016-4602.
CVE-2016-1848HigMay 20, 2016
Apple Inc.
Quicktime
risk 0.54cvss 7.8epss 0.05
QuickTime in Apple OS X before 10.11.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file.
CVE-2016-1767HigMar 24, 2016
Apple Inc.
Quicktime
risk 0.54cvss 7.8epss 0.05
QuickTime in Apple OS X before 10.11.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted FlashPix image, a different vulnerability than CVE-2016-1768.
CVE-2017-2218HigJul 7, 2017
Apple Inc.
Quicktime
risk 0.51cvss 7.8epss 0.01
Untrusted search path vulnerability in Installer of QuickTime for Windows allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory.
CVE-2017-2413HigApr 2, 2017
Apple Inc.
Quicktime
risk 0.51cvss 7.8epss 0.02
An issue was discovered in certain Apple products. macOS before 10.12.4 is affected. The issue involves the "QuickTime" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted media file.
CVE-2016-4599HigJul 22, 2016
Apple Inc.
Quicktime
risk 0.51cvss 7.8epss 0.02
QuickTime in Apple OS X before 10.11.6 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted Photoshop document.
CVE-2015-7117MedJan 9, 2016
Apple Inc.
Quicktime
risk 0.43cvss 6.6epss 0.02
Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7086, CVE-2015-7087, CVE-2015-7088,…
CVE-2015-7092MedJan 9, 2016
Apple Inc.
Quicktime
risk 0.43cvss 6.6epss 0.02
Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service (heap-based buffer overflow and application crash) via a crafted TXXX frame within an ID3 tag in MP3 data in a movie file, a different vulnerability than CVE-2015-7085,…
CVE-2015-7091MedJan 9, 2016
Apple Inc.
Quicktime
risk 0.43cvss 6.6epss 0.01
Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7086, CVE-2015-7087, CVE-2015-7088,…
CVE-2015-7090MedJan 9, 2016
Apple Inc.
Quicktime
risk 0.43cvss 6.6epss 0.02
Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7086, CVE-2015-7087, CVE-2015-7088,…
CVE-2015-7089MedJan 9, 2016
Apple Inc.
Quicktime
risk 0.43cvss 6.6epss 0.02
Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7086, CVE-2015-7087, CVE-2015-7088,…
CVE-2015-7088MedJan 9, 2016
Apple Inc.
Quicktime
risk 0.43cvss 6.6epss 0.02
Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7086, CVE-2015-7087, CVE-2015-7089,…
CVE-2015-7087MedJan 9, 2016
Apple Inc.
Quicktime
risk 0.43cvss 6.6epss 0.02
Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7086, CVE-2015-7088, CVE-2015-7089,…
CVE-2015-7086MedJan 9, 2016
Apple Inc.
Quicktime
risk 0.43cvss 6.6epss 0.01
Apple QuickTime before 7.7.9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file, a different vulnerability than CVE-2015-7085, CVE-2015-7087, CVE-2015-7088, CVE-2015-7089,…

Page 1 of 15