Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2007-0718
HistoryMar 05, 2007 - 10:19 p.m.

CVE-2007-0718

2007-03-0522:19:00
CWE-119
mitre
web.nvd.nist.gov
34
cve-2007-0718
apple quicktime
buffer overflow
remote code execution
memory corruption
nvd

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:P/A:P

AI Score

7.9

Confidence

High

EPSS

0.858

Percentile

98.6%

JSON

Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows remote user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a QTIF file with a Video Sample Description containing a Color table ID of 0, which triggers memory corruption when QuickTime assumes that a color table exists.

Affected configurations

Nvd
Node
applequicktimeMatch7.0
OR
applequicktimeMatch7.0.1
OR
applequicktimeMatch7.0.2
OR
applequicktimeMatch7.0.3
OR
applequicktimeMatch7.0.4
OR
applequicktimeMatch7.1
OR
applequicktimeMatch7.1.1
OR
applequicktimeMatch7.1.2
OR
applequicktimeMatch7.1.3
OR
applequicktimeMatch7.1.4
VendorProductVersionCPE
applequicktime7.0cpe:2.3:a:apple:quicktime:7.0:*:*:*:*:*:*:*
applequicktime7.0.1cpe:2.3:a:apple:quicktime:7.0.1:*:*:*:*:*:*:*
applequicktime7.0.2cpe:2.3:a:apple:quicktime:7.0.2:*:*:*:*:*:*:*
applequicktime7.0.3cpe:2.3:a:apple:quicktime:7.0.3:*:*:*:*:*:*:*
applequicktime7.0.4cpe:2.3:a:apple:quicktime:7.0.4:*:*:*:*:*:*:*
applequicktime7.1cpe:2.3:a:apple:quicktime:7.1:*:*:*:*:*:*:*
applequicktime7.1.1cpe:2.3:a:apple:quicktime:7.1.1:*:*:*:*:*:*:*
applequicktime7.1.2cpe:2.3:a:apple:quicktime:7.1.2:*:*:*:*:*:*:*
applequicktime7.1.3cpe:2.3:a:apple:quicktime:7.1.3:*:*:*:*:*:*:*
applequicktime7.1.4cpe:2.3:a:apple:quicktime:7.1.4:*:*:*:*:*:*:*

Related

checkpoint_advisories 1
prion 1
cvelist 1
nvd 1
cert 1
securityvulns 2
nessus 2
seebug 1
checkpoint_advisories
checkpoint_advisories
Apple QuickTime Color Table ID Heap Corruption (CVE-2007-0718)
2010-02-16 00:00:00
prion
prion
Heap overflow
2007-03-05 22:19:00
cvelist
cvelist
CVE-2007-0718
2007-03-05 22:00:00
nvd
nvd
CVE-2007-0718
2007-03-05 22:19:00
cert
cert
Apple QuickTime QTIF heap buffer overflow
2007-03-06 00:00:00
securityvulns
securityvulns
iDefense Security Advisory 03.05.07: Apple QuickTime Color Table ID Heap Corruption Vulnerability
2007-03-06 00:00:00
Apple QuickTime multiple security vulnerabilities
2007-03-09 00:00:00
nessus
nessus
Quicktime < 7.1.5 Multiple Vulnerabilities (Mac OS X)
2007-03-06 00:00:00
QuickTime < 7.1.5 Multiple Vulnerabilities (Windows)
2007-03-06 00:00:00
seebug
seebug
Apple QuickTime倚δΈͺθΏœη¨‹ηΌ“ε†²εŒΊζΊ’ε‡ΊζΌζ΄ž
2007-03-09 00:00:00

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:P/A:P

AI Score

7.9

Confidence

High

EPSS

0.858

Percentile

98.6%

JSON
Related for CVE-2007-0718
checkpoint_advisories1prion1cvelist1nvd1cert1securityvulns2nessus2seebug1