CVE-2007-2389

Published: May 29, 2007Modified: Apr 23, 2026

7.1

Vector

AV:N/AC:M/Au:N/C:C/I:N/A:N

Exploitability: 8.6 / Impact: 6.9

Source: NVD

Description

Apple QuickTime for Java 7.1.6 on Mac OS X and Windows does not clear potentially sensitive memory before use, which allows remote attackers to read memory from a web browser via unknown vectors related to Java applets.

Affected (1)

Products: Apple: Quicktime

Apple

1 product

Quicktime

Configuration A

1 vulnerable · 42 platform

Vulnerable Software	Affected Versions
Apple Quicktime	Version 7.1.6

Running on/with	Platform Versions
Apple Mac Os X	All versions
Apple Mac Os X	Version 10.0.1
Apple Mac Os X	Version 10.0.2
Apple Mac Os X	Version 10.0.3
Apple Mac Os X	Version 10.0.4
Apple Mac Os X	Version 10.0
Apple Mac Os X	Version 10.1.1
Apple Mac Os X	Version 10.1.2
Apple Mac Os X	Version 10.1.3
Apple Mac Os X	Version 10.1.4
Apple Mac Os X	Version 10.1.5
Apple Mac Os X	Version 10.1
Apple Mac Os X	Version 10.2.1
Apple Mac Os X	Version 10.2.2
Apple Mac Os X	Version 10.2.3
Apple Mac Os X	Version 10.2.4
Apple Mac Os X	Version 10.2.5
Apple Mac Os X	Version 10.2.6
Apple Mac Os X	Version 10.2.7
Apple Mac Os X	Version 10.2.8
Apple Mac Os X	Version 10.2
Apple Mac Os X	Version 10.3.1
Apple Mac Os X	Version 10.3.2
Apple Mac Os X	Version 10.3.3
Apple Mac Os X	Version 10.3.4
Apple Mac Os X	Version 10.3.5
Apple Mac Os X	Version 10.3.6
Apple Mac Os X	Version 10.3.7
Apple Mac Os X	Version 10.3.8
Apple Mac Os X	Version 10.3.9
Apple Mac Os X	Version 10.3
Apple Mac Os X	Version 10.4.1
Apple Mac Os X	Version 10.4.2
Apple Mac Os X	Version 10.4.3
Apple Mac Os X	Version 10.4.4
Apple Mac Os X	Version 10.4.5
Apple Mac Os X	Version 10.4.6
Apple Mac Os X	Version 10.4.7
Apple Mac Os X	Version 10.4.8
Apple Mac Os X	Version 10.4.9
Apple Mac Os X	Version 10.4
Microsoft All Windows	All versions