Vulnerability Database

290,301

Total vulnerabilities in the database

CVE-2010-0520

Heap-based buffer overflow in QuickTimeAuthoring.qtx in QuickTime in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted FLC file, related to crafted DELTA_FLI chunks and untrusted length values in a .fli file, which are not properly handled during decompression.

  • Published: Mar 30, 2010
  • Updated: Apr 13, 2023
  • CVE: CVE-2010-0520
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 6.8
  • AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

Software From Fixed in
apple / mac_os_x_server 10.6.1 10.6.1.x
apple / mac_os_x_server 10.6.2 10.6.2.x
apple / mac_os_x 10.6.1 10.6.1.x
apple / mac_os_x_server 10.6.0 10.6.0.x
apple / mac_os_x 10.6.0 10.6.0.x
apple / mac_os_x 10.6.2 10.6.2.x