{ "id": "CVE-2010-0529", "sourceIdentifier": "product-security@apple.com", "published": "2010-03-31T18:30:00.343", "lastModified": "2018-10-10T19:53:01.697", "vulnStatus": "Modified", "evaluatorImpact": "Per: http://lists.apple.com/archives/security-announce/2010//Mar/msg00002.html\r\n\r\n'This issue does not affect Mac OS X systems.'", "descriptions": [ { "lang": "en", "value": "Heap-based buffer overflow in QuickTime.qts in Apple QuickTime before 7.6.6 on Windows allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a PICT image with a BkPixPat opcode (0x12) containing crafted values that are used in a calculation for memory allocation." }, { "lang": "es", "value": "El desbordamiento de b\u00fafer en la regi\u00f3n heap de la memoria en el archivo QuickTime.qts en QuickTime de Apple anterior a versi\u00f3n 7.6.6 sobre Windows, permite a los atacantes remotos ejecutar c\u00f3digo arbitrario o causar una denegaci\u00f3n de servicio (bloqueo de aplicaci\u00f3n) por medio de una imagen PICT con un BkPixPat Opcode (0x12) que contiene valores dise\u00f1ados que se utilizan en un c\u00e1lculo para la asignaci\u00f3n de memoria" } ], "metrics": { "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "MEDIUM", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 9.3 }, "baseSeverity": "HIGH", "exploitabilityScore": 8.6, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "CWE-119" } ] } ], "configurations": [ { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:*:-:windows:*:*:*:*:*", "versionEndIncluding": "7.6.0", "matchCriteriaId": "B27C0810-E6C3-44D9-8EA1-BBCF0C681F71" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.0.0:-:windows:*:*:*:*:*", "matchCriteriaId": "3F4075B0-0F9F-466B-8521-2156849247C2" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.0.1:-:windows:*:*:*:*:*", "matchCriteriaId": "DF2A6BCB-108E-4226-BC31-6E0057DFB6D2" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.0.2:-:windows:*:*:*:*:*", "matchCriteriaId": "F8BF6A6A-F734-4395-9305-2E9F52EE888F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.0.3:-:windows:*:*:*:*:*", "matchCriteriaId": "AFCB45F3-397E-42A8-8D08-ECF667939FF8" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.0.4:-:windows:*:*:*:*:*", "matchCriteriaId": "D5C04F70-E2E6-48F4-948D-9D0C7B2A2F3D" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.1.0:-:windows:*:*:*:*:*", "matchCriteriaId": "E1DB3FBD-40F4-41FB-A939-3E3A4D0D85B2" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.1.1:-:windows:*:*:*:*:*", "matchCriteriaId": "F45B47BB-E14F-4437-8828-EF059496BF95" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.1.2:-:windows:*:*:*:*:*", "matchCriteriaId": "9B353211-F90E-4F38-9D0B-B8C7EC00E66F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.1.3:-:windows:*:*:*:*:*", "matchCriteriaId": "F6A44CA9-D257-4BB7-B5AB-23193F35FCB5" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.1.4:-:windows:*:*:*:*:*", "matchCriteriaId": "9B8F4241-551B-492D-8602-06146B05CF13" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.1.5:-:windows:*:*:*:*:*", "matchCriteriaId": "2BA9C6F7-513B-426F-90AD-7E826433CEF1" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.1.6:-:windows:*:*:*:*:*", "matchCriteriaId": "5B709D68-8474-4AAE-AA11-777EF510E1AC" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.2.0:-:windows:*:*:*:*:*", "matchCriteriaId": "4DCEE583-6CD2-4098-9A2A-B006A5023318" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.2.1:-:windows:*:*:*:*:*", "matchCriteriaId": "52AD56F9-0CE6-4949-9853-3274A2C81601" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.3.0:-:windows:*:*:*:*:*", "matchCriteriaId": "555B1A2A-95F5-4B06-8774-FF952BEC2FBB" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.3.1:-:windows:*:*:*:*:*", "matchCriteriaId": "CEA210F5-71F6-4528-B2B4-507AA4A435EB" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.4.0:-:windows:*:*:*:*:*", "matchCriteriaId": "081712FF-C6B8-423B-8F20-C79D25DE782F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.4.1:-:windows:*:*:*:*:*", "matchCriteriaId": "CF045B49-11A3-447A-9D05-1E8794980A81" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.4.5:-:windows:*:*:*:*:*", "matchCriteriaId": "939BE521-A385-4A1A-B4B0-C4687751D4A5" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.5.0:-:windows:*:*:*:*:*", "matchCriteriaId": "304CFC80-E925-4CB8-8251-0FD0F09B8410" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.5.5:-:windows:*:*:*:*:*", "matchCriteriaId": "DFD95CD9-E387-4EC8-B6EA-FBC6961E4C8F" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:o:microsoft:windows_7:*:*:*:*:*:*:*:*", "matchCriteriaId": "D56B932B-9593-44E2-B610-E4EB2143EB21" }, { "vulnerable": false, "criteria": "cpe:2.3:o:microsoft:windows_vista:*:*:*:*:*:*:*:*", "matchCriteriaId": "3852BB02-47A1-40B3-8E32-8D8891A53114" }, { "vulnerable": false, "criteria": "cpe:2.3:o:microsoft:windows_xp:*:sp2:*:*:*:*:*:*", "matchCriteriaId": "9B339C33-8896-4896-88FF-88E74FDBC543" } ] } ] } ], "references": [ { "url": "http://lists.apple.com/archives/security-announce/2010//Mar/msg00002.html", "source": "product-security@apple.com", "tags": [ "Patch", "Vendor Advisory" ] }, { "url": "http://www.securityfocus.com/archive/1/510569/100/0/threaded", "source": "product-security@apple.com" }, { "url": "http://www.zerodayinitiative.com/advisories/ZDI-10-067", "source": "product-security@apple.com" }, { "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6780", "source": "product-security@apple.com" } ] }