CVE-2007-0715

Published: Mar 5, 2007Modified: Apr 23, 2026

5.8

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:P

Exploitability: 8.6 / Impact: 4.9

Source: NVD

Description

Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows remote user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PICT file.

Affected (10)

Products: Apple: Quicktime

1 product

Configuration A

10 vulnerable

Vulnerable Software	Affected Versions
Apple Quicktime	Version 7.0.1
Apple Quicktime	Version 7.0.2
Apple Quicktime	Version 7.0.3
Apple Quicktime	Version 7.0.4
Apple Quicktime	Version 7.0
Apple Quicktime	Version 7.1.1
Apple Quicktime	Version 7.1.2
Apple Quicktime	Version 7.1.3
Apple Quicktime	Version 7.1.4
Apple Quicktime	Version 7.1

References (20)

http://docs.info.apple.com/article.html?artnum=305149

Source: cve@mitre.org

PatchVendor Advisory

http://lists.apple.com/archives/Security-announce/2007/Mar/msg00000.html

Source: cve@mitre.org

Vendor Advisory

http://osvdb.org/33901

Source: cve@mitre.org

http://secunia.com/advisories/24359

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/448745

Source: cve@mitre.org

US Government Resource

http://www.securityfocus.com/bid/22827

Source: cve@mitre.org

http://www.securitytracker.com/id?1017725

Source: cve@mitre.org

http://www.us-cert.gov/cas/techalerts/TA07-065A.html

Source: cve@mitre.org

US Government Resource

http://www.vupen.com/english/advisories/2007/0825

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/32821

Source: cve@mitre.org

http://docs.info.apple.com/article.html?artnum=305149

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://lists.apple.com/archives/Security-announce/2007/Mar/msg00000.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://osvdb.org/33901

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/24359

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.kb.cert.org/vuls/id/448745

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.securityfocus.com/bid/22827

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1017725

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.us-cert.gov/cas/techalerts/TA07-065A.html

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.vupen.com/english/advisories/2007/0825

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/32821

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.