Details of VAR-200503-0146

ID

VAR-200503-0146

CVE

CVE-2004-0988

TITLE

Apple QuickTime Remote arbitrary code execution vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200503-032

DESCRIPTION

Integer overflow on Apple QuickTime before 6.5.2, when running on Windows systems, allows remote attackers to cause a denial of service (memory consumption) via certain inputs that cause a large memory operation. This issue is due to a failure of the application to properly validate integer signed-ness prior to using it to carry out critical operations. An attacker may leverage this issue to cause the affected QuickTime client to crash, denying service to legitimate users. It has been speculated that this issue may also facilitate code execution; any code execution would occur with the privileges of the user that activated the affected software. Apple QuickTime is a media player that provides high-quality sound and images. An unspecified issue in Apple QuickTime for Windows could allow a remote attacker to execute arbitrary code with process privileges from the HTML environment. Currently NSSSoftware has not released detailed vulnerability details

Trust: 1.26

sources: NVD: CVE-2004-0988 // BID: 11553 // VULHUB: VHN-9418

AFFECTED PRODUCTS

vendor:	apple	model:	quicktime	scope:	eq	version:	6.5.1	Trust: 1.6
vendor:	apple	model:	quicktime	scope:	eq	version:	6.5	Trust: 1.6
vendor:	apple	model:	quicktime	scope:	eq	version:	6.1	Trust: 1.6
vendor:	apple	model:	quicktime	scope:	eq	version:	5.0.2	Trust: 1.6
vendor:	apple	model:	quicktime	scope:	eq	version:	6.0	Trust: 1.6
vendor:	apple	model:	quicktime player	scope:	eq	version:	6.5.1	Trust: 0.3
vendor:	apple	model:	quicktime player	scope:	eq	version:	6.5	Trust: 0.3
vendor:	apple	model:	quicktime player	scope:	eq	version:	6.1	Trust: 0.3
vendor:	apple	model:	quicktime player	scope:	eq	version:	5.0.2	Trust: 0.3
vendor:	apple	model:	quicktime player	scope:	eq	version:	6	Trust: 0.3
vendor:	apple	model:	quicktime player	scope:	ne	version:	6.5.2	Trust: 0.3

sources: BID: 11553 // CNNVD: CNNVD-200503-032 // NVD: CVE-2004-0988

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2004-0988
value:	MEDIUM
Trust: 1.0
CNNVD:	CNNVD-200503-032
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-9418
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2004-0988
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-9418
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-9418 // CNNVD: CNNVD-200503-032 // NVD: CVE-2004-0988

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2004-0988

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200503-032

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-200503-032

EXTERNAL IDS

db:	NVD	id:	CVE-2004-0988	Trust: 2.0
db:	CNNVD	id:	CNNVD-200503-032	Trust: 0.7
db:	APPLE	id:	APPLE-SA-2004-10-27	Trust: 0.6
db:	BID	id:	11553	Trust: 0.4
db:	VULHUB	id:	VHN-9418	Trust: 0.1

sources: VULHUB: VHN-9418 // BID: 11553 // CNNVD: CNNVD-200503-032 // NVD: CVE-2004-0988

REFERENCES

url:	http://lists.apple.com/archives/security-announce/2004/oct/msg00001.html	Trust: 1.7
url:	http://www.apple.com/quicktime/	Trust: 0.3
url:	/archive/1/379608	Trust: 0.3

sources: VULHUB: VHN-9418 // BID: 11553 // CNNVD: CNNVD-200503-032 // NVD: CVE-2004-0988

CREDITS

NGSSoftware mark@ngssoftware.com

Trust: 0.6

sources: CNNVD: CNNVD-200503-032

SOURCES

db:	VULHUB	id:	VHN-9418
db:	BID	id:	11553
db:	CNNVD	id:	CNNVD-200503-032
db:	NVD	id:	CVE-2004-0988

LAST UPDATE DATE

2024-08-14T13:01:51.261000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-9418	date:	2008-09-10T00:00:00
db:	BID	id:	11553	date:	2009-07-12T08:06:00
db:	CNNVD	id:	CNNVD-200503-032	date:	2005-10-20T00:00:00
db:	NVD	id:	CVE-2004-0988	date:	2008-09-10T19:28:31.337

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-9418	date:	2005-03-01T00:00:00
db:	BID	id:	11553	date:	2004-10-27T00:00:00
db:	CNNVD	id:	CNNVD-200503-032	date:	2004-10-27T00:00:00
db:	NVD	id:	CVE-2004-0988	date:	2005-03-01T05:00:00