Lucene search
HistoryMay 14, 2007 - 9:19 p.m.
CVE-2007-0754
cve-2007-0754
apple quicktime
buffer overflow
remote code execution
nvd
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.6 High
AI Score
Confidence
Low
0.106 Low
EPSS
Percentile
95.1%
Heap-based buffer overflow in Apple QuickTime before 7.1.3 allows user-assisted remote attackers to execute arbitrary code via a crafted Sample Table Sample Descriptor (STSD) atom size in a QuickTime movie.
Affected configurations
Node
applequicktimeRange≤7.1.2
| CPE | Name | Operator | Version |
|---|---|---|---|
| apple:quicktime | apple quicktime | le | 7.1.2 |
Related
cvelist
cvelist
CVE-2007-0754
2007-05-14 21:00:00
securityvulns
securityvulns
Apple QuickTime / iTunes multiple vulnerabilities
2007-05-12 00:00:00
TPTI-07-07: Apple QuickTime STSD Parsing Heap Overflow Vulnerability
2007-05-12 00:00:00
prion
prion
Heap overflow
2007-05-14 21:19:00
nvd
nvd
CVE-2007-0754
2007-05-14 21:19:00
nessus
nessus
QuickTime < 7.1.3 Multiple Vulnerabilities (Windows)
2006-09-13 00:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.6 High
AI Score
Confidence
Low
0.106 Low
EPSS
Percentile
95.1%
Related for CVE-2007-0754