NVD

Id
45333  
Name
CVE-2012-3751  
Description
Use-after-free vulnerability in the plugin in Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via an HTML document with a crafted _qtactivex_ parameter in an OBJECT element.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2012-11-09  
Modified Date
2013-11-02  
Seq
2012-3751  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
227642 45333 CVE-2012-3751 APPLE-SA-2012-11-07-1  View
227643 45333 CVE-2012-3751 oval:org.mitre.oval:def:16166  View
227644 45333 CVE-2012-3751 http://support.apple.com/kb/HT5581  View
227645 45333 CVE-2012-3751 apple-quicktime-qtactivex-code-exec(79897)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
29590 JVNDB-2012-005297 Apple QuickTime における任意のコードを実行される脆弱性 Apple QuickTime には、解放済みメモリの使用 (Use-after-free) により、任意のコードを実行される、またはサービス運用妨害 (アプリケーションクラッシュ) 状態となる脆弱性が存在します。 CVE-2012-3751 56989 CVE-2012-3751 45333 9.3 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-005297.html 2012-11-07 2012-11-13 View