Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2007-2389
HistoryMay 29, 2007 - 9:30 p.m.

CVE-2007-2389

2007-05-2921:30:00
[email protected]
web.nvd.nist.gov
31
cve-2007-2389
apple quicktime
java
memory disclosure
web browser
nvd

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:C/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.014 Low

EPSS

Percentile

86.7%

JSON

Apple QuickTime for Java 7.1.6 on Mac OS X and Windows does not clear potentially sensitive memory before use, which allows remote attackers to read memory from a web browser via unknown vectors related to Java applets.

Affected configurations

NVD
Node
applemac_os_x
OR
applemac_os_xMatch10.0
OR
applemac_os_xMatch10.0.1
OR
applemac_os_xMatch10.0.2
OR
applemac_os_xMatch10.0.3
OR
applemac_os_xMatch10.0.4
OR
applemac_os_xMatch10.1
OR
applemac_os_xMatch10.1.1
OR
applemac_os_xMatch10.1.2
OR
applemac_os_xMatch10.1.3
OR
applemac_os_xMatch10.1.4
OR
applemac_os_xMatch10.1.5
OR
applemac_os_xMatch10.2
OR
applemac_os_xMatch10.2.1
OR
applemac_os_xMatch10.2.2
OR
applemac_os_xMatch10.2.3
OR
applemac_os_xMatch10.2.4
OR
applemac_os_xMatch10.2.5
OR
applemac_os_xMatch10.2.6
OR
applemac_os_xMatch10.2.7
OR
applemac_os_xMatch10.2.8
OR
applemac_os_xMatch10.3
OR
applemac_os_xMatch10.3.1
OR
applemac_os_xMatch10.3.2
OR
applemac_os_xMatch10.3.3
OR
applemac_os_xMatch10.3.4
OR
applemac_os_xMatch10.3.5
OR
applemac_os_xMatch10.3.6
OR
applemac_os_xMatch10.3.7
OR
applemac_os_xMatch10.3.8
OR
applemac_os_xMatch10.3.9
OR
applemac_os_xMatch10.4
OR
applemac_os_xMatch10.4.1
OR
applemac_os_xMatch10.4.2
OR
applemac_os_xMatch10.4.3
OR
applemac_os_xMatch10.4.4
OR
applemac_os_xMatch10.4.5
OR
applemac_os_xMatch10.4.6
OR
applemac_os_xMatch10.4.7
OR
applemac_os_xMatch10.4.8
OR
applemac_os_xMatch10.4.9
OR
microsoftall_windows
AND
applequicktimeMatch7.1.6java
CPENameOperatorVersion
apple:quicktimeapple quicktimeeq7.1.6

Related

cert 1
cvelist 1
prion 1
nvd 1
nessus 4
cert
cert
Apple QuickTime for Java information disclosure vulnerability
2007-05-30 00:00:00
cvelist
cvelist
CVE-2007-2389
2007-05-29 21:00:00
prion
prion
Code injection
2007-05-29 21:30:00
nvd
nvd
CVE-2007-2389
2007-05-29 21:30:00
nessus
nessus
QuickTime < 7.1.6 Security Update (Windows)
2007-05-30 00:00:00
Quicktime Multiple Vulnerabilities (Mac OS X 7.1.6 Security Update)
2007-05-30 00:00:00
QuickTime < 7.2 Multiple Vulnerabilities (Windows)
2007-07-12 00:00:00

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:C/I:N/A:N

6 Medium

AI Score

Confidence

Low

0.014 Low

EPSS

Percentile

86.7%

JSON
Related for CVE-2007-2389
cert1cvelist1prion1nvd1nessus4