ID CVE-2007-2393
Summary The design of QuickTime for Java in Apple Quicktime before 7.2 allows remote attackers to bypass certain security controls and write to process memory via Java applets, possibly leading to arbitrary code execution.
References
Vulnerable Configurations
  • cpe:2.3:a:apple:quicktime:-:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:-:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.0:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.0:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.0.4:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.0.4:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.1:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.1.1:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.1.1:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.1.2:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.1.2:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.1.3:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.1.3:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.1.4:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.1.4:*:*:*:*:*:*:*
  • cpe:2.3:a:apple:quicktime:7.1.5:*:*:*:*:*:*:*
    cpe:2.3:a:apple:quicktime:7.1.5:*:*:*:*:*:*:*
CVSS
Base: 9.3 (as of 30-10-2018 - 16:25)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:C/I:C/A:C
refmap via4
apple APPLE-SA-2007-07-11
bid 24873
cert TA07-193A
confirm http://docs.info.apple.com/article.html?artnum=305947
osvdb 36135
sectrack 1018373
secunia 26034
vupen ADV-2007-2510
xf quicktime-java-applet-code-execution(35359)
Last major update 30-10-2018 - 16:25
Published 15-07-2007 - 21:30
Last modified 30-10-2018 - 16:25
Back to Top