語系:
http://www.zerodayinitiative.com/advisories/ZDI-11-254/
http://www.zerodayinitiative.com/advisories/ZDI-11-257/
http://www.zerodayinitiative.com/advisories/ZDI-11-258/
http://www.zerodayinitiative.com/advisories/ZDI-11-259/
http://support.apple.com/kb/HT4826
http://lists.apple.com/archives/security-announce/2011/Aug/msg00000.html
嚴重性: High
ID: 55763
檔案名稱: macosx_Quicktime77.nasl
版本: 1.19
類型: local
代理程式: macosx
已發布: 2011/8/4
已更新: 2018/7/14
支援的感應器: Nessus Agent, Nessus
風險因素: High
分數: 8.9
風險因素: High
基本分數: 9.3
時間分數: 8.1
媒介: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C
CPE: cpe:/a:apple:quicktime
必要的 KB 項目: Host/local_checks_enabled, Host/MacOSX/Version, MacOSX/QuickTime/Version
可被惡意程式利用: true
可輕鬆利用: Exploits are available
修補程式發佈日期: 2011/8/3
弱點發布日期: 2011/6/23
CANVAS (White_Phosphorus)
Core Impact
Metasploit (Apple QuickTime PICT PnSize Buffer Overflow)
CVE: CVE-2011-0186, CVE-2011-0187, CVE-2011-0209, CVE-2011-0210, CVE-2011-0211, CVE-2011-0213, CVE-2011-0245, CVE-2011-0249, CVE-2011-0250, CVE-2011-0251, CVE-2011-0252, CVE-2011-0256, CVE-2011-0257
BID: 46992, 46995, 48419, 48420, 48430, 48442, 49028, 49034, 49035, 49036, 49038, 49144, 49170