ID CVE-2007-2392
Summary Apple Quicktime before 7.2 on Mac OS X 10.3.9 and 10.4.9 allows user-assisted remote attackers to execute arbitrary code via a crafted movie file that triggers memory corruption.
References
Vulnerable Configurations
  • cpe:2.3:o:apple:mac_os_x:10.3.9:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.3.9:*:*:*:*:*:*:*
  • cpe:2.3:o:apple:mac_os_x:10.4.9:*:*:*:*:*:*:*
    cpe:2.3:o:apple:mac_os_x:10.4.9:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:-:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:-:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.0:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.1:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.1.2:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.1.2:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.1.3:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.1.4:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.1.4:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.1.5:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.1.5:*:*:*:*:*:*:*
CVSS
Base: 9.3 (as of 30-10-2018 - 16:25)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:C/I:C/A:C
refmap via4
apple APPLE-SA-2007-07-11
bid 24873
cert TA07-193A
cert-vn VU#582681
confirm http://docs.info.apple.com/article.html?artnum=305947
osvdb 36136
sectrack 1018373
secunia 26034
vupen ADV-2007-2510
xf quicktime-moviefile-code-execution(35353)
Last major update 30-10-2018 - 16:25
Published 15-07-2007 - 21:30
Last modified 30-10-2018 - 16:25
Back to Top