PRIOn knowledge basePRION:CVE-2007-2393Code injection
7.6 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.05 Low
EPSS
Percentile
92.6%
The design of QuickTime for Java in Apple Quicktime before 7.2 allows remote attackers to bypass certain security controls and write to process memory via Java applets, possibly leading to arbitrary code execution.
References
docs.info.apple.com/article.html?artnum=305947
lists.apple.com/archives/Security-announce/2007/Jul/msg00001.html
osvdb.org/36135
secunia.com/advisories/26034
www.securityfocus.com/bid/24873
www.securitytracker.com/id?1018373
www.us-cert.gov/cas/techalerts/TA07-193A.html
www.vupen.com/english/advisories/2007/2510
exchange.xforce.ibmcloud.com/vulnerabilities/35359
Related
7.6 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.05 Low
EPSS
Percentile
92.6%