Back to search
CVE-2008-0778
Published: Feb 14, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple stack-based buffer overflows in an ActiveX control in QTPlugin.ocx for Apple QuickTime 7.4.1 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long arguments to the (1) SetBgColor, (2) SetHREF, (3) SetMovieName, (4) SetTarget, and (5) SetMatrix methods.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
apple-quicktime-qtplugin-bo(40475)
vdb-entry
x_refsource_XF
3652
third-party-advisory
x_refsource_SREASON
27769
vdb-entry
x_refsource_BID
5110
exploit
x_refsource_EXPLOIT-DB
20080212 QuickTime <= 7.4.1 QTPlugin.ocx Multiple Remote Stack Overflow
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now