CVE-2008-3627

EPSS 17.90% · P95 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2008-3627

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Apple QuickTime before 7.5.5 does not properly handle (1) MDAT atoms in MP4 video files within QuickTimeH264.qtx, (2) MDAT atoms in mov video files within QuickTimeH264.scalar, and (3) AVC1 atoms in an unknown media type within an unspecified component, which allows remote attackers to execute arbitrary code or cause a denial of service (heap corruption and application crash) via a crafted, H.264 encoded movie file.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Apple QuickTime QTVR 栈溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Apple QuickTime是一款非常流行的多媒体播放器。 Apple QuickTime 7.5.5之前版本中存在栈溢出漏洞。远程攻击者可利用在PDAT中包含特制的maxtilt、minFieldOfView及maxFiledOfView的QTVR电影文件，执行任意代码或导致程序崩溃。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2008-3627

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2008-3627

Please Login to view more intelligence information

http://www.zerodayinitiative.com/advisories/ZDI-08-060/x_refsource_MISC
http://www.zerodayinitiative.com/advisories/ZDI-08-061/x_refsource_MISC
http://support.apple.com/kb/HT3027x_refsource_CONFIRM
http://www.securityfocus.com/bid/31086vdb-entryx_refsource_BID
http://secunia.com/advisories/31821third-party-advisoryx_refsource_SECUNIA
http://securitytracker.com/id?1020841vdb-entryx_refsource_SECTRACK
http://www.vupen.com/english/advisories/2008/2527vdb-entryx_refsource_VUPEN
http://lists.apple.com/archives/security-announce//2008/Sep/msg00000.htmlvendor-advisoryx_refsource_APPLE
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16164vdb-entrysignaturex_refsource_OVAL
http://www.securityfocus.com/archive/1/496163/100/0/threadedmailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/496176/100/0/threadedmailing-listx_refsource_BUGTRAQ
http://www.securityfocus.com/archive/1/496175/100/0/threadedmailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2008-3627

Same Patch Batch · n/a · 2008-09-10 · 39 CVEs total

CVE-2008-3965		免费软件 MyBB misc.php SQL注入漏洞
CVE-2008-3008		Microsoft MediaEncoder wmex.dll 缓冲区溢出漏洞
CVE-2008-3012		Microsoft GDI+ EMF内存破坏漏洞
CVE-2008-3013		Microsoft Internet Explorer安全漏洞
CVE-2008-3014		Microsoft GDI+ WMF 缓冲区溢出漏洞
CVE-2008-3015		Microsoft GDI+ BMP 整数溢出漏洞
CVE-2008-3539		HP OpenView Select Identity 信息泄露漏洞
CVE-2008-3962		开源软件ssmtp 信息泄露漏洞
CVE-2008-3963		Oracle MySQL 格式化字符串错误漏洞
CVE-2008-3964		libpng 资源管理错误漏洞
CVE-2008-3007		Microsoft Offiec onenote:// 代码执行漏洞
CVE-2008-3966		免费软件 MyBB 多个跨站脚本攻击漏洞
CVE-2008-3967		免费软件 MyBB moderation.php 未知安全漏洞
CVE-2008-3968		开源软件 PunBB userlist.php 跨站脚本攻击漏洞
CVE-2008-3969		BitlBee 资源管理错误漏洞
CVE-2008-3970		开源软件 pam_mount luserconf 绕过访问控制漏洞
CVE-2008-3971		开源软件 gmanedit callbacks.c 缓冲区溢出漏洞
CVE-2008-3972		OpenSC 安全漏洞
CVE-2008-4018		IBM AIX swcons 不安全文件漏洞
CVE-2008-3631		Apple iPodTouch/iPhone Sanbox 信息泄露漏洞

Showing top 20 of 39 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2008-3627

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2008-3627

I. Basic Information for CVE-2008-3627

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2008-3627

III. Intelligence Information for CVE-2008-3627

Same Patch Batch · n/a · 2008-09-10 · 39 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2008-3627

Leave a comment