CVE-2012-3752

Apple QuickTime < 7.7.3 - Remote Code Execution via TeXML Style Element

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2012-3752. PoCs published by Metasploit, Arezou Hosseinzad-Amirkhizi, juan vazquez, including Metasploit module exploits/windows/browser/apple_quicktime_texml_font_table.

AI-analyzed exploit summary This Metasploit module exploits a stack-based buffer overflow in Apple QuickTime 7.7.2 via a maliciously crafted TeXML file. The exploit leverages the font-table field to trigger the overflow and achieve arbitrary code execution under the context of the user.

Description

Multiple buffer overflows in Apple QuickTime before 7.7.3 allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted style element in a QuickTime TeXML file.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/22905

This Metasploit module exploits a stack-based buffer overflow in Apple QuickTime 7.7.2 via a maliciously crafted TeXML file. The exploit leverages the font-table field to trigger the overflow and achieve arbitrary code execution under the context of the user.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Apple QuickTime 7.7.2
No auth needed
Prerequisites: Victim must visit a malicious webpage or open a malicious TeXML file · QuickTime 7.7.2 must be installed on the victim's system
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
by Arezou Hosseinzad-Amirkhizi, juan vazquez · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/browser/apple_quicktime_texml_font_table.rb

This Metasploit module exploits a stack-based buffer overflow in Apple QuickTime 7.7.2 via a maliciously crafted TeXML file. The vulnerability is triggered by an overly long 'font-table' field in the Style element, leading to arbitrary code execution under the context of the user.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Apple QuickTime 7.7.2
No auth needed
Prerequisites: Victim must visit a malicious web page or open a crafted TeXML file · QuickTime 7.7.2 must be installed on the target system
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (7)

Core 7
Core References
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/51226
Vendor Advisory vendor-advisory x_refsource_apple
http://lists.apple.com/archives/security-announce/2012/Nov/msg00002.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/56557
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A16121
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/79899
Vendor Advisory x_refsource_confirm
http://support.apple.com/kb/HT5581

Scores

EPSS 0.3601
EPSS Percentile 98.3%

Details

CWE
CWE-119
Status published
Products (50)
apple/quicktime 3.0
apple/quicktime 4.1.2
apple/quicktime 5.0
apple/quicktime 5.0.1
apple/quicktime 5.0.2
apple/quicktime 6.0
apple/quicktime 6.0.0
apple/quicktime 6.0.1
apple/quicktime 6.0.2
apple/quicktime 6.1
... and 40 more
Published Nov 09, 2012
Tracked Since Feb 18, 2026