CVE-2011-0257 Information
Feb 14, 2021
cve
Description
Integer signedness error in Apple QuickTime before 7.7 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted PnSize opcode in a PICT file that triggers a stack-based buffer overflow.
Reference
http://securityreason.com/securityalert/8365 http://support.apple.com/kb/HT4826 http://www.exploit-db.com/exploits/17777 http://zerodayinitiative.com/advisories/ZDI-11-252/ https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A16059
Share on: