CVE-2004-0431

EPSS 0.77% · P74 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2004-0431

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Integer overflow in Apple QuickTime (QuickTime.qts) before 6.5.1 allows attackers to execute arbitrary code via a large "number of entries" field in the sample-to-chunk table data for a .mov movie file, which leads to a heap-based buffer overflow.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Apple QuickTime Sample-to-Chunk远程整数溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Apple QuickTime是一款提供高质量声音和图象的媒体播放器。 Apple QuickTime在处理畸形.mov文件时存在问题，远程攻击者可以利用这个漏洞触发缓冲区溢出，可能以进程权限在系统上执行任意指令。问题存在与QuickTime.qts文件中，QuickTime.qts文件负责处理从QuickTime格式电影中的'stsc'数据中拷贝Sample-to-Chunk表条目到分配的堆内存中，由于对"number of entries"字段数据缺少正确处理，提供值为0x0FFFFFFE或更大的数

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2004-0431

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2004-0431

请登录查看更多情报信息。

http://www.kb.cert.org/vuls/id/782958third-party-advisoryx_refsource_CERT-VN
http://lists.apple.com/mhonarc/security-announce/msg00048.htmlvendor-advisoryx_refsource_APPLE
https://exchange.xforce.ibmcloud.com/vulnerabilities/16026vdb-entryx_refsource_XF
http://marc.info/?l=ntbugtraq&m=108356485013237&w=2mailing-listx_refsource_NTBUGTRAQ
http://marc.info/?l=bugtraq&m=108360110618389&w=2mailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2004-0431

Same Patch Batch · n/a · 2004-05-06 · 6 CVEs total

CVE-2004-0050		Verity Ultraseek错误信息路径公开漏洞
CVE-2004-0392		KAME Racoon远程IKE消息远程拒绝服务漏洞
CVE-2004-0422		Emacs flim库以不安全方式创建临时文件漏洞
CVE-2004-0430		Apple Mac OS X AppleFileServer预验证远程缓冲区溢出漏洞
CVE-2004-0437		Titan文件传输服务器漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2004-0431

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2004-0431

I. Basic Information for CVE-2004-0431

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2004-0431

III. Intelligence Information for CVE-2004-0431

Same Patch Batch · n/a · 2004-05-06 · 6 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2004-0431

Leave a comment