CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
AI Score
Confidence
High
EPSS
Percentile
83.2%
QuickTime in Apple Mac OS X before 10.7.2 does not properly process URL data handlers in movie files, which allows remote attackers to obtain sensitive information from uninitialized memory locations via a crafted file.
Vendor | Product | Version | CPE |
---|---|---|---|
apple | mac_os_x | 10.4 | cpe:/o:apple:mac_os_x:10.4::: |
apple | mac_os_x | 10.6.7 | cpe:/o:apple:mac_os_x:10.6.7::: |
apple | mac_os_x | 10.1.2 | cpe:/o:apple:mac_os_x:10.1.2::: |
apple | mac_os_x | 10.1.3 | cpe:/o:apple:mac_os_x:10.1.3::: |
apple | mac_os_x | 10.2.3 | cpe:/o:apple:mac_os_x:10.2.3::: |
apple | mac_os_x | 10.3.8 | cpe:/o:apple:mac_os_x:10.3.8::: |
apple | mac_os_x_server | 10.3 | cpe:/o:apple:mac_os_x_server:10.3::: |
apple | mac_os_x | 10.4.5 | cpe:/o:apple:mac_os_x:10.4.5::: |
apple | mac_os_x | 10.3.1 | cpe:/o:apple:mac_os_x:10.3.1::: |
apple | mac_os_x | 10.0.0 | cpe:/o:apple:mac_os_x:10.0.0::: |