NVD

Id
29931  
Name
CVE-2014-1250  
Description
Apple QuickTime before 7.7.5 does not properly perform a byte-swapping operation, which allows remote attackers to execute arbitrary code or cause a denial of service (out-of-bounds memory access and application crash) via a crafted ttfo element in a movie file.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2014-02-26  
Modified Date
2014-03-10  
Seq
2014-1250  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
157748 29931 CVE-2014-1250 http://support.apple.com/kb/HT6150  View
157749 29931 CVE-2014-1250 http://support.apple.com/kb/HT6151  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
12603 JVNDB-2014-001478 Apple QuickTime における任意のコードを実行される脆弱性 Apple QuickTime は、バイトスワップ操作を適切に実行しないため、任意のコードを実行される、またはサービス運用妨害 (メモリ領域外へのアクセスおよびアプリケーションクラッシュ) 状態にされる脆弱性が存在します。 CVE-2014-1250 68537 CVE-2014-1250 29931 9.3 http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-001478.html 2014-02-25 2014-02-28 View