Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2007-2394
HistoryJul 15, 2007 - 9:30 p.m.

CVE-2007-2394

2007-07-1521:30:00
[email protected]
web.nvd.nist.gov
23
apple
quicktime
integer overflow
remote code execution
smil file
memory allocation

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.71 High

EPSS

Percentile

98.1%

JSON

Integer overflow in Apple Quicktime before 7.2 on Mac OS X 10.3.9 and 10.4.9 allows user-assisted remote attackers to execute arbitrary code via crafted (1) title and (2) author fields in an SMIL file, related to improper calculations for memory allocation.

Affected configurations

NVD
Node
applemac_os_xMatch10.3.9
OR
applemac_os_xMatch10.4.9
AND
applequicktimeMatch-
OR
applequicktimeMatch7.0
OR
applequicktimeMatch7.0.1
OR
applequicktimeMatch7.0.2
OR
applequicktimeMatch7.0.3
OR
applequicktimeMatch7.0.4
OR
applequicktimeMatch7.1
OR
applequicktimeMatch7.1.1
OR
applequicktimeMatch7.1.2
OR
applequicktimeMatch7.1.3
OR
applequicktimeMatch7.1.4
OR
applequicktimeMatch7.1.5

Related

seebug 4
exploitpack 2
securityvulns 2
prion 1
cvelist 1
checkpoint_advisories 1
nvd 1
packetstorm 1
exploitdb 2
nessus 1
seebug
seebug
Apple QuickTime <= 7.1.5 Information Disclosure and Multiple Code Execution Vulnerabilities
2014-07-01 00:00:00
Apple Quicktime < 7.2 - SMIL Remote Integer Overflow PoC
2014-07-01 00:00:00
Apple Quicktime &lt; 7.2 SMIL Remote Integer Overflow PoC
2007-09-11 00:00:00
exploitpack
exploitpack
Apple QuickTime 7.2 - SMIL Remote Integer Overflow
2007-09-03 00:00:00
Apple QuickTime 7.1.5 - Information Disclosure Multiple Code Execution Vulnerabilities
2007-07-11 00:00:00
securityvulns
securityvulns
Apple QuickTime buffer overflow
2007-07-13 00:00:00
[Full-disclosure] iDefense Security Advisory 07.11.07: Apple QuickTime SMIL File Processing Integer Overflow Vulnerability
2007-07-12 00:00:00
prion
prion
Integer overflow
2007-07-15 21:30:00
cvelist
cvelist
CVE-2007-2394
2007-07-15 21:00:00
checkpoint_advisories
checkpoint_advisories
Apple QuickTime SMIL File Handling Integer Overflow (CVE-2007-2394)
2009-12-16 00:00:00
nvd
nvd
CVE-2007-2394
2007-07-15 21:30:00
packetstorm
packetstorm
apple-overflow.txt
2007-09-05 00:00:00
exploitdb
exploitdb
Apple QuickTime &lt; 7.2 - SMIL Remote Integer Overflow
2007-09-03 00:00:00
Apple QuickTime 7.1.5 - Information Disclosure / Multiple Code Execution Vulnerabilities
2007-07-11 00:00:00
nessus
nessus
QuickTime < 7.2 Multiple Vulnerabilities (Mac OS X)
2007-07-12 00:00:00

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.71 High

EPSS

Percentile

98.1%

JSON
Related for CVE-2007-2394
seebug4exploitpack2securityvulns2prion1cvelist1checkpoint_advisories1nvd1packetstorm1exploitdb2nessus1