Published: 29/05/2002 Updated: 11/10/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 760

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Buffer overflow in Apple QuickTime Player 5.01 and 5.02 allows remote web servers to execute arbitrary code via a response containing a long Content-Type MIME header.

Vulnerable Product	Search on Vulmon	Subscribe to Product
apple quicktime 5.0.1
apple quicktime 5.0.2

Apple Quicktime versions 72 and 73 RTSP response Content-Type header stack buffer overflow exploit for Mac-OSX and Microsoft Windows ...

source: wwwsecurityfocuscom/bid/4064/info Apple QuickTime is a freely available media player It runs on a number of platforms including MacOS and Windows 9x/ME/NT/2000/XP operating systems Apple QuickTime For Windows does not perform sufficient bounds checking of the "Content-Type" header This issue may be exploited if a server respon ...

# Copyright (C) 2007 Subreption LLC All rights reserved # Visit blogsubreptioncom for exploit development notes # # References: # wwwmilw0rmcom/exploits/4648 (original Microsoft Windows code) # wwwmilw0rmcom/exploits/4651 (recent Microsoft Windows exploit) # From Metasploit: apple_quicktime_rtsp_responserb (by M ...

NVD-CWE-Other http://www.securityfocus.com/bid/4064 http://www.iss.net/security_center/static/8126.php http://marc.info/?l=bugtraq&m=101320742616105&w=2 https://www.exploit-db.com/exploits/4673 https://nvd.nist.gov https://packetstormsecurity.com/files/61380/aquick-winosx.txt.html https://www.exploit-db.com/exploits/21286/

CVE-2002-0252

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect