Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-6166Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple Quicktime

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer12 documents5 sources
Severity
9.3CRITICALNVD
EPSS
84.3%
top 0.68%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Apple Quicktime
Timeline
PublishedNov 29
Latest updateMay 1

Description

Stack-based buffer overflow in Apple QuickTime before 7.3.1, as used in QuickTime Player on Windows XP and Safari on Mac OS X, allows remote Real Time Streaming Protocol (RTSP) servers to execute arbitrary code via an RTSP response with a long Content-Type header.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

NVDapple/quicktime7.3+23

🔴Vulnerability Details

3
GHSA
GHSA-mrqv-c428-3hfp: Stack-based buffer overflow in Apple QuickTime before 72022-05-01
CVEList
CVE-2007-6166: Stack-based buffer overflow in Apple QuickTime before 72007-11-29
VulnCheck
Apple quicktime Improper Restriction of Operations within the Bounds of a Memory Buffer2007

💥Exploits & PoCs

8
Exploit-DB
Apple QuickTime (Mac OSX) - RTSP Content-Type Overflow (Metasploit)2010-10-09
Exploit-DB
Apple QuickTime 7.3 - RTSP Response Header Buffer Overflow (Metasploit)2010-05-09
Exploit-DB
Apple QuickTime 7.2/7.3 - RTSP Buffer Overflow2010-01-06
Exploit-DB
Apple Safari / QuickTime 7.3 - RTSP Content-Type Remote Buffer Overflow2008-07-06
Exploit-DB
Apple QuickTime 7.2/7.3 - RSTP Response Universal2007-11-27
CVE-2007-6166 — Apple Quicktime vulnerability | cvebase