CVE-2006-4382 | Vulnerability Database | Aqua Security

Multiple buffer overflows in Apple QuickTime before 7.1.3 allow user-assisted remote attackers to execute arbitrary code via a crafted QuickTime movie.

Affected Software

Name	Vendor	Start Version	End Version
Quicktime	Apple	*	7.1.2 (including)
Quicktime	Apple	5.0 (including)	5.0 (including)
Quicktime	Apple	5.0.1 (including)	5.0.1 (including)
Quicktime	Apple	5.0.2 (including)	5.0.2 (including)
Quicktime	Apple	6.0 (including)	6.0 (including)
Quicktime	Apple	6.1 (including)	6.1 (including)
Quicktime	Apple	6.5 (including)	6.5 (including)
Quicktime	Apple	6.5.1 (including)	6.5.1 (including)
Quicktime	Apple	6.5.2 (including)	6.5.2 (including)
Quicktime	Apple	7.0 (including)	7.0 (including)
Quicktime	Apple	7.0.1 (including)	7.0.1 (including)
Quicktime	Apple	7.0.2 (including)	7.0.2 (including)
Quicktime	Apple	7.0.3 (including)	7.0.3 (including)
Quicktime	Apple	7.0.4 (including)	7.0.4 (including)
Quicktime	Apple	7.1.1 (including)	7.1.1 (including)
Quicktime	Apple	7.1.2 (including)	7.1.2 (including)

References

http://docs.info.apple.com/article.html?artnum=304357
http://lists.apple.com/archives/Security-announce/2006/Sep/msg00000.html
http://secunia.com/advisories/21893
http://secunia.com/advisories/29182
http://security.gentoo.org/glsa/glsa-200803-08.xml
http://securityreason.com/securityalert/1554
http://securitytracker.com/id?1016830
http://www.kb.cert.org/vuls/id/683700
http://www.osvdb.org/28772
http://www.securityfocus.com/archive/1/445888/100/0/threaded
http://www.securityfocus.com/bid/19976
http://www.us-cert.gov/cas/techalerts/TA06-256A.html
http://www.vupen.com/english/advisories/2006/3577
https://exchange.xforce.ibmcloud.com/vulnerabilities/28929

NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-4382
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html