CVE-2014-1391

QT Media Foundation in Apple OS X before 10.9.5 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted movie file with RLE encoding.

Published: Sep 19, 2014
Updated: Apr 13, 2023
CVE: CVE-2014-1391
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
apple / mac_os_x	10.9.2	10.9.2.x
apple / mac_os_x_server	10.7.5	10.7.5.x
apple / mac_os_x	10.9	10.9.x
apple / mac_os_x	10.9.4	10.9.4.x
apple / mac_os_x	10.7.5	10.7.5.x
apple / mac_os_x	10.9.1	10.9.1.x
apple / mac_os_x	10.8.5	10.8.5.x
apple / mac_os_x	10.9.3	10.9.3.x

http://support.apple.com/kb/HT6443
http://www.securityfocus.com/bid/69907
http://www.securitytracker.com/id/1030868
https://exchange.xforce.ibmcloud.com/vulnerabilities/96049
https://support.apple.com/kb/HT6493

Vulnerability Database

CVE-2014-1391

Deep Security Visibility Without the Complexity