Lucene search

[email protected]CVE-2007-3750

HistoryNov 07, 2007 - 11:46 p.m.

CVE-2007-3750

2007-11-0723:46:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2007-3750

apple quicktime

buffer overflow

remote code execution

nvd

7.8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.157 Low

EPSS

Percentile

95.9%

JSON

Heap-based buffer overflow in Apple QuickTime before 7.3 allows remote attackers to execute arbitrary code via crafted Sample Table Sample Descriptor (STSD) atoms in a movie file.

CPENameOperatorVersion
apple:quicktimeapple quicktimele7.2

CPE	Name	Operator	Version
apple:quicktime	apple quicktime	le	7.2

References

docs.info.apple.com/article.html?artnum=306896

lists.apple.com/archives/Security-announce/2007/Nov/msg00000.html

osvdb.org/38549

secunia.com/advisories/27523

www.securityfocus.com/bid/26341

www.securitytracker.com/id?1018894

www.us-cert.gov/cas/techalerts/TA07-310A.html

www.vupen.com/english/advisories/2007/3723

exchange.xforce.ibmcloud.com/vulnerabilities/38268

7.8 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.157 Low

EPSS

Percentile

95.9%

JSON

Related for CVE-2007-3750

checkpoint_advisories1 prion1 nessus2