CVE-2013-1032

Опубликовано: 16 сент. 2013

Источник: nvd

CVSS2: 6.8

EPSS Низкий

Описание

QuickTime in Apple Mac OS X before 10.8.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted idsc atom in a QuickTime movie file.

Ссылки

http://lists.apple.com/archives/security-announce/2013/Sep/msg00002.html
Release Notes
Vendor Advisory
http://support.apple.com/kb/HT5880
Release Notes
Vendor Advisory
http://support.apple.com/kb/HT6151
Release Notes
Vendor Advisory
http://lists.apple.com/archives/security-announce/2013/Sep/msg00002.html
Release Notes
Vendor Advisory
http://support.apple.com/kb/HT5880
Release Notes
Vendor Advisory
http://support.apple.com/kb/HT6151
Release Notes
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:apple:quicktime:*:*:*:*:*:*:*:*

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

Версия до 10.8.5 (исключая)

Конфигурация 2

cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*

Версия до 10.8.5 (исключая)

EPSS

Процентиль: 77%

0.0104

Низкий

6.8 Medium

CVSS2

Дефекты

CWE-787

Связанные уязвимости

GHSA-rg29-f6cq-5hp4

github

больше 3 лет назад