CVE-2011-0256

EUVD-2011-0282
Integer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted track run atoms in a QuickTime movie file.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 83%
Affected Products (NVD)
VendorProductVersion
applequicktime
𝑥
≤ 7.6.9
applequicktime
7.0.0
applequicktime
7.0.1
applequicktime
7.0.2
applequicktime
7.0.3
applequicktime
7.0.4
applequicktime
7.1.0
applequicktime
7.1.1
applequicktime
7.1.2
applequicktime
7.1.3
applequicktime
7.1.4
applequicktime
7.1.5
applequicktime
7.1.6
applequicktime
7.2.0
applequicktime
7.2.1
applequicktime
7.3.0
applequicktime
7.3.1
applequicktime
7.3.1.70
applequicktime
7.4.0
applequicktime
7.4.1
applequicktime
7.4.5
applequicktime
7.5.0
applequicktime
7.5.5
applequicktime
7.6.0
applequicktime
7.6.1
applequicktime
7.6.2
applequicktime
7.6.5
applequicktime
7.6.6
applequicktime
7.6.7
applequicktime
7.6.8
applequicktime
7.66.71.0
applequicktime
7.67.75.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://support.apple.com/kb/HT4826
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16097
http://support.apple.com/kb/HT4826
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16097