1. CVE-Search
  2. CVE-2007-0711
ID CVE-2007-0711
Summary Integer overflow in Apple QuickTime before 7.1.5, when installed on Windows operating systems, allows remote user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted 3GP video file.
References
Vulnerable Configurations
  • cpe:2.3:a:apple:quicktime:3.0:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:4.1.2:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:4.1.2:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:5.0.1:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:5.0.1:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:5.0.2:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:5.0.2:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:6.0:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:6.0:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:6.0.0:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:6.0.0:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:6.0.1:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:6.0.1:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:6.0.2:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:6.0.2:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:6.1.0:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:6.1.0:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:6.1.1:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:6.1.1:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:6.2.0:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:6.2.0:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:6.3.0:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:6.3.0:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:6.4.0:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:6.4.0:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:6.5.0:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:6.5.0:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:6.5.1:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:6.5.1:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:6.5.2:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:6.5.2:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.0:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.0:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.0.0:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.0.0:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.0.1:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.0.1:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.0.2:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.0.2:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.0.3:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.0.3:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.0.4:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.0.4:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.1.0:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.1.0:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.1.1:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.1.1:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.1.2:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.1.2:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.1.3:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.1.3:-:windows:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.1.4:-:windows:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.1.4:-:windows:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
CVSS
Base: 9.3 (as of 30-10-2018 - 16:25)
Impact:
Exploitability:
CWE CWE-189
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:C/I:C/A:C
refmap via4
apple APPLE-SA-2007-03-05
bid 22827
cert TA07-065A
cert-vn VU#568689
confirm http://docs.info.apple.com/article.html?artnum=305149
osvdb 33905
sectrack 1017725
secunia 24359
vupen ADV-2007-0825
xf quicktime-3gpvideo-overflow(32814)
Last major update 30-10-2018 - 16:25
Published 05-03-2007 - 22:19
Last modified 30-10-2018 - 16:25
Back to Top