Published: 2006-05-13T08:14+00:00    Last Updated: 2006-05-13T08:14+00:00

TRTA06-132B
Apple QuickTime Vulnerabilities

Overview

Apple QuickTime contains multiple vulnerabilities. Exploitation of these vulnerabilities could allow a remote attacker to execute arbitrary code or cause a denial-of-service condition.

Event Information

Date (UTC)Description
2006-05-12 21:21 US-CERT
TA06-132B: Apple QuickTime Vulnerabilities
Via US-CERT Mailing List
2006-05-12 16:39 McAfee Avert Labs
Apple QuickDraw/QuickTime Multiple Vulnerabilities
Via Bugtraq Mailing List
2006-05-12 03:03 India & US Nevis Labs
Apple QuickTime udta ATOM Heap Overflow
Vendor notified via product-security@apple.com
2006-05-11 22:16 Apple
Article ID: 303752: About the security content of the QuickTime 7.1 Update
2006-05-11 Apple
Download ID: sd9374: Apple - Support - Downloads - QuickTime 7.1
2006-03-20 Zero Day Initiative (ZDI)
ZDI-06-015: Apple QuickTime H.264 Parsing Heap Overflow Vulnerability
Vulnerability reported to vendor (CVE-2006-1463)
2006-03-07 eEye Digital Security
AD20060511: Apple QuickTime FPX Integer Overflow
Reported (CVE-2006-1249)

Other Information

CVE CVE-2006-1249
CVE-2006-1453
CVE-2006-1454
CVE-2006-1458
CVE-2006-1459
CVE-2006-1460
CVE-2006-1461
CVE-2006-1462
CVE-2006-1463
CVE-2006-1464
CVE-2006-1465
CVE-2006-2238
CVE-2006-1463