CVE-2011-0256

Integer overflow in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted track run atoms in a QuickTime movie file.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
appleCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 84%
VendorProductVersion
applequicktime
𝑥
≤ 7.6.9
applequicktime
7.0.0
applequicktime
7.0.1
applequicktime
7.0.2
applequicktime
7.0.3
applequicktime
7.0.4
applequicktime
7.1.0
applequicktime
7.1.1
applequicktime
7.1.2
applequicktime
7.1.3
applequicktime
7.1.4
applequicktime
7.1.5
applequicktime
7.1.6
applequicktime
7.2.0
applequicktime
7.2.1
applequicktime
7.3.0
applequicktime
7.3.1
applequicktime
7.3.1.70
applequicktime
7.4.0
applequicktime
7.4.1
applequicktime
7.4.5
applequicktime
7.5.0
applequicktime
7.5.5
applequicktime
7.6.0
applequicktime
7.6.1
applequicktime
7.6.2
applequicktime
7.6.5
applequicktime
7.6.6
applequicktime
7.6.7
applequicktime
7.6.8
applequicktime
7.66.71.0
applequicktime
7.67.75.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://support.apple.com/kb/HT4826
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16097
http://support.apple.com/kb/HT4826
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16097