CVE-2007-0711Apple Quicktime vulnerability

CWE-1893 documents3 sources
Severity
9.3CRITICALNVD
EPSS
21.7%
top 4.25%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Apple Quicktime
Timeline
PublishedMar 5
Latest updateMay 1

Description

Integer overflow in Apple QuickTime before 7.1.5, when installed on Windows operating systems, allows remote user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted 3GP video file.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

NVDapple/quicktime7.1.4+26

Patches

Patch: docs.info.apple.comPatch: www.us-cert.govPatch: docs.info.apple.com

🔴Vulnerability Details

2
GHSA
GHSA-7m82-jf96-9qf4: Integer overflow in Apple QuickTime before 72022-05-01
CVEList
CVE-2007-0711: Integer overflow in Apple QuickTime before 72007-03-05
CVE-2007-0711 — Apple Quicktime vulnerability | cvebase