CVE-2004-0926

Опубликовано: 27 янв. 2005

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

Heap-based buffer overflow in Apple QuickTime on Mac OS 10.2.8 through 10.3.5 may allow remote attackers to execute arbitrary code via a certain BMP image.

Ссылки

http://lists.apple.com/archives/security-announce/2004/Oct/msg00000.html
Patch
Vendor Advisory
http://lists.apple.com/archives/security-announce/2004/Oct/msg00001.html
http://www.securityfocus.com/bid/11322
Patch
Vendor Advisory
http://lists.apple.com/archives/security-announce/2004/Oct/msg00000.html
Patch
Vendor Advisory
http://lists.apple.com/archives/security-announce/2004/Oct/msg00001.html
http://www.securityfocus.com/bid/11322
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:easy_software_products:cups:1.0.4:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.0.4_8:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.1:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.4:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.4_2:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.4_3:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.4_5:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.6:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.7:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.10:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.12:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.13:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.14:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.15:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.16:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.17:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.18:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.19:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.19_rc5:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.20:*:*:*:*:*:*:*

cpe:2.3:a:easy_software_products:cups:1.1.21:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:o:apple:mac_os_x:10.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.2.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.2.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.2.3:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.2.4:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.2.5:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.2.6:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.2.7:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.2.8:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.3:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.3.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.3.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.3.3:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.3.4:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:10.3.5:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.2.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.2.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.2.3:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.2.4:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.2.5:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.2.6:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.2.7:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.2.8:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.3:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.3.1:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.3.2:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.3.3:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.3.4:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x_server:10.3.5:*:*:*:*:*:*:*

EPSS

Процентиль: 88%

0.03657

Низкий

10 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-3mcr-5hjh-5f4c

github

почти 4 года назад