VDB
CVE-2005-2756
CVE-2005-2756
PUBLISHED
CVSS 5.099999904632568 MEDIUM
Apple QuickTime before 7.0.3 allows user-assisted attackers to overwrite memory and execute arbitrary code via a crafted PICT file that triggers an overflow during expansion.
EPSS 2.31% · 85.1th percentile
Risk Scores
CVSS 2.0
5.099999904632568
EPSS Score
2.31%
85.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| apple | quicktime | 6.5.2, 0, 6.5.2 |
| n/a | n/a | n/a |
Timeline
- Nov 5, 2005 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
References
- VU#855118 third-party-advisory
- 20478 vdb
- 1015152 vdb
- http://docs.info.apple.com/article.html?artnum=302772 url
- 17428 third-party-advisory
- 144 third-party-advisory
- http://pb.specialised.info/all/adv/quicktime-pict-adv.txt url
- 20051104 Advisory: Apple QuickTime PICT Remote Memory Overwrite mailing-list
- ADV-2005-2293 vdb
- 15309 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2005-2756 advisory