CVE-2008-0778

EPSS 19.21% · P95 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-0778

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Multiple stack-based buffer overflows in an ActiveX control in QTPlugin.ocx for Apple QuickTime 7.4.1 and earlier allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long arguments to the (1) SetBgColor, (2) SetHREF, (3) SetMovieName, (4) SetTarget, and (5) SetMatrix methods.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Apple QuickTime QTPlugin.ocx ActiveX控件缓冲区溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Apple QuickTime是一款非常流行的多媒体播放器。 QuickTime所安装的QTPlugin.ocx ActiveX控件在处理畸形参数数据时存在缓冲区溢出漏洞。远程攻击者可能利用此漏洞控制用户系统。 QTPlugin.ocx ActiveX控件没有正确地验证对SetBgColor、SetHREF、SetMovieName、SetTarget和SetMatrix函数的输入，如果用户受骗访问了恶意网页并向这些函数传送了超长字符串的话，就可能触发栈溢出，导致执行任意指令。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2008-0778

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2008-0778

请登录查看更多情报信息。

http://securityreason.com/securityalert/3652third-party-advisoryx_refsource_SREASON
https://www.exploit-db.com/exploits/5110exploitx_refsource_EXPLOIT-DB
http://www.securityfocus.com/bid/27769vdb-entryx_refsource_BID
https://exchange.xforce.ibmcloud.com/vulnerabilities/40475vdb-entryx_refsource_XF
http://www.securityfocus.com/archive/1/488045/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2008-0778

Same Patch Batch · n/a · 2008-02-14 · 10 CVEs total

CVE-2008-0783		Cacti多个跨站脚本攻击漏洞
CVE-2008-0784		Cacti 多个信息泄露漏洞
CVE-2008-0785		Cacti 多个SQL注入漏洞
CVE-2008-0786		Cacti PHP解释器 HTTP攻击漏洞
CVE-2008-0780		MoinMoin 登陆操作跨站脚本攻击漏洞
CVE-2008-0781		MoinMoin action/AttachFile.py 多个跨站脚本攻击漏洞
CVE-2008-0782		MoinMoin MOIN_id Cookie 目录遍历漏洞
CVE-2008-0026		Cisco Unified Communications Manager key参数 SQL注入漏洞
CVE-2008-0779		Fortinet FortiClient 'fortimon.sys' 任意代码执行漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2008-0778

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2008-0778

I. Basic Information for CVE-2008-0778

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2008-0778

III. Intelligence Information for CVE-2008-0778

Same Patch Batch · n/a · 2008-02-14 · 10 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2008-0778

Leave a comment