CVE Vulnerabilities

CVE-2008-3614

Published: Sep 11, 2008 | Modified: Oct 30, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Integer overflow in Apple QuickTime before 7.5.5 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PICT image, which triggers heap corruption.

Affected Software

Name Vendor Start Version End Version
Quicktime Apple * 7.5 (including)
Quicktime Apple 7.0 (including) 7.0 (including)
Quicktime Apple 7.0.1 (including) 7.0.1 (including)
Quicktime Apple 7.0.2 (including) 7.0.2 (including)
Quicktime Apple 7.0.3 (including) 7.0.3 (including)
Quicktime Apple 7.0.4 (including) 7.0.4 (including)
Quicktime Apple 7.1 (including) 7.1 (including)
Quicktime Apple 7.1.1 (including) 7.1.1 (including)
Quicktime Apple 7.1.2 (including) 7.1.2 (including)
Quicktime Apple 7.1.3 (including) 7.1.3 (including)
Quicktime Apple 7.1.4 (including) 7.1.4 (including)
Quicktime Apple 7.1.5 (including) 7.1.5 (including)
Quicktime Apple 7.1.6 (including) 7.1.6 (including)
Quicktime Apple 7.2 (including) 7.2 (including)
Quicktime Apple 7.3 (including) 7.3 (including)
Quicktime Apple 7.3.1 (including) 7.3.1 (including)
Quicktime Apple 7.3.1.70 (including) 7.3.1.70 (including)
Quicktime Apple 7.4 (including) 7.4 (including)
Quicktime Apple 7.4.1 (including) 7.4.1 (including)
Quicktime Apple 7.4.5 (including) 7.4.5 (including)

References