Apple QuickTime before 7.7.5 does not properly perform a byte-swapping operation, which allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds memory access and application crash) via a crafted ttfo element in a movie file.
References
Link | Resource |
---|---|
http://support.apple.com/kb/HT6150 | Vendor Advisory |
http://support.apple.com/kb/HT6151 | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2014-02-26 17:55
Updated : 2014-03-10 10:37
NVD link : CVE-2014-1250
Mitre link : CVE-2014-1250
JSON object : View
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
Products Affected
apple
- quicktime