Oval Definition:oval:org.mitre.oval:def:16152
Revision Date:2013-07-29Version:6
Title:The CallComponentFunctionWithStorage function in Apple QuickTime before 7.5.5 does not properly handle a large entry in the sample_size_table in STSZ atoms, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file
Description:The CallComponentFunctionWithStorage function in Apple QuickTime before 7.5.5 does not properly handle a large entry in the sample_size_table in STSZ atoms, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2008-3626
Platform(s):Microsoft Windows 7
Microsoft Windows Vista
Microsoft Windows XP
Product(s):Apple QuickTime
Definition Synopsis
  • Apple QuickTime is installed
  • AND QuickTimePlayer.exe version is less than 7.5.5 (7.55.90.70)
  • BACK