CVE Daily

CVE-2012-3758

Buffer overflow in Apple QuickTime before 7.7.3 allows remote attackers to execu...

Critical CVSS 9.3

Overview

Buffer overflow in Apple QuickTime before 7.7.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted transform attribute in a text3GTrack element in a QuickTime TeXML file.

CWE: CWE-119 Published: 2012-11-09T19:55:01.770
Risk analysis

This vulnerability is rated 🔴 CRITICAL.

  • CVSS: 9.3 (CRITICAL)
  • Detected tags: none (tag impact: LOW)

Recommended actions:

  • Prioritize remediation based on business criticality and exposure.
  • Limit exposure and increase monitoring until fixed.

Recommended tools

Tags