CVE-2009-0003

Heap-based buffer overflow in Apple QuickTime before 7.6 allows remote attackers to cause a denial of service (application termination) and execute arbitrary code via an AVI movie file with an invalid nBlockAlign value in the _WAVEFORMATEX structure.
Severity
UNKNOWN
AV:N/AC:M/Au:N/C:C/I:C/A:C
Atk. Vector
NETWORK
Atk. Complexity
MEDIUM
Base Score
CVSS 3.x
EPSS Score
Percentile: 97%
VendorProductVersion
applequicktime
𝑥
≤ 7.5.5
applequicktime
-
applequicktime
3.0
applequicktime
4.1.2
applequicktime
5.0
applequicktime
5.0.1
applequicktime
5.0.2
applequicktime
6.0
applequicktime
6.1
applequicktime
6.5
applequicktime
6.5.1
applequicktime
6.5.2
applequicktime
7.0
applequicktime
7.0.1
applequicktime
7.0.2
applequicktime
7.0.3
applequicktime
7.0.4
applequicktime
7.1
applequicktime
7.1.1
applequicktime
7.1.2
applequicktime
7.1.3
applequicktime
7.1.4
applequicktime
7.1.5
applequicktime
7.1.6
applequicktime
7.2
applequicktime
7.3
applequicktime
7.3.1
applequicktime
7.3.1.70
applequicktime
7.4
applequicktime
7.4.1
applequicktime
7.4.4
applequicktime
7.4.5
applequicktime
7.5
𝑥
= Vulnerable software versions