Integer overflow in the quicktime_read_pascal function in libquicktime 1.2.4 and earlier allows remote attackers to cause a denial of service or possibly have other unspecified impact via a crafted hdlr MP4 atom.
References
Link | Resource |
---|---|
http://www.debian.org/security/2017/dsa-3800 | |
http://www.nemux.org/2016/02/23/libquicktime-1-2-4/ | Exploit Technical Description Third Party Advisory |
http://www.securityfocus.com/bid/95880 | Third Party Advisory VDB Entry |
https://packetstormsecurity.com/files/135899/libquicktime-1.2.4-Integer-Overflow.html | Exploit Third Party Advisory VDB Entry |
https://www.exploit-db.com/exploits/39487/ |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2017-01-30T22:00:00
Updated: 2017-11-03T18:57:01
Reserved: 2016-02-17T00:00:00
Link: CVE-2016-2399
JSON object: View
NVD Information
Status : Modified
Published: 2017-01-30T22:59:00.343
Modified: 2017-11-04T01:29:18.677
Link: CVE-2016-2399
JSON object: View
Redhat Information
No data.
CWE