| Revision Date: | 2013-07-29 | Version: | 6 |
| Title: | The CallComponentFunctionWithStorage function in Apple QuickTime before 7.5.5 does not properly handle a large entry in the sample_size_table in STSZ atoms, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file |
| Description: | The CallComponentFunctionWithStorage function in Apple QuickTime before 7.5.5 does not properly handle a large entry in the sample_size_table in STSZ atoms, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file. |
| Family: | windows | Class: | vulnerability |
| Status: | ACCEPTED | Reference(s): | CVE-2008-3626
|
| Platform(s): | Microsoft Windows 7
Microsoft Windows Vista
Microsoft Windows XP
| Product(s): | Apple QuickTime
|
| Definition Synopsis |
| Apple QuickTime is installed AND QuickTimePlayer.exe version is less than 7.5.5 (7.55.90.70)
|