Lucene search

K
cve[email protected]CVE-2015-3667
HistoryJul 03, 2015 - 1:59 a.m.

CVE-2015-3667

2015-07-0301:59:25
CWE-119
web.nvd.nist.gov
38
cve-2015-3667
qt media foundation
apple quicktime
os x
remote code execution
denial of service
memory corruption

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

5.2 Medium

AI Score

Confidence

High

0.516 Medium

EPSS

Percentile

97.6%

QT Media Foundation in Apple QuickTime before 7.7.7, as used in OS X before 10.10.4 and other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted file, a different vulnerability than CVE-2015-3661, CVE-2015-3662, CVE-2015-3663, CVE-2015-3666, and CVE-2015-3668.

Affected configurations

NVD
Node
applemac_os_xRange10.10.3
Node
applequicktimeRange7.7.6
CPENameOperatorVersion
apple:mac_os_xapple mac os xle10.10.3

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

5.2 Medium

AI Score

Confidence

High

0.516 Medium

EPSS

Percentile

97.6%