CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-0059

Cross-zone scripting vulnerability in Apple Quicktime 3 to 7.1.3 allows remote user-assisted attackers to execute arbitrary code and list filesystem contents via a QuickTime movie (.MOV) with an HREF Track (HREFTrack) that contains an automatic action tag with a local URI, which is executed in a local zone during preview, as exploited by a MySpace worm.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.115

EPSS Ranking 93.3%

CVSS Severity

CVSS v2 Score 6.8

References

Products affected by CVE-2007-0059

Apple » Quicktime » Version: N/A

cpe:2.3:a:apple:quicktime:-
Apple » Quicktime » Version: 3

cpe:2.3:a:apple:quicktime:3
Apple » Quicktime » Version: 3.0

cpe:2.3:a:apple:quicktime:3.0
Apple » Quicktime » Version: 4.1.2

cpe:2.3:a:apple:quicktime:4.1.2
Apple » Quicktime » Version: 5.0

cpe:2.3:a:apple:quicktime:5.0
Apple » Quicktime » Version: 5.0.1

cpe:2.3:a:apple:quicktime:5.0.1
Apple » Quicktime » Version: 5.0.2

cpe:2.3:a:apple:quicktime:5.0.2
Apple » Quicktime » Version: 6.0

cpe:2.3:a:apple:quicktime:6.0
Apple » Quicktime » Version: 6.0.0

cpe:2.3:a:apple:quicktime:6.0.0
Apple » Quicktime » Version: 6.0.1

cpe:2.3:a:apple:quicktime:6.0.1
Apple » Quicktime » Version: 6.0.2

cpe:2.3:a:apple:quicktime:6.0.2
Apple » Quicktime » Version: 6.1

cpe:2.3:a:apple:quicktime:6.1
Apple » Quicktime » Version: 6.1.0

cpe:2.3:a:apple:quicktime:6.1.0
Apple » Quicktime » Version: 6.1.1

cpe:2.3:a:apple:quicktime:6.1.1
Apple » Quicktime » Version: 6.2.0

cpe:2.3:a:apple:quicktime:6.2.0
Apple » Quicktime » Version: 6.3.0

cpe:2.3:a:apple:quicktime:6.3.0
Apple » Quicktime » Version: 6.4.0

cpe:2.3:a:apple:quicktime:6.4.0
Apple » Quicktime » Version: 6.5

cpe:2.3:a:apple:quicktime:6.5
Apple » Quicktime » Version: 6.5.0

cpe:2.3:a:apple:quicktime:6.5.0
Apple » Quicktime » Version: 6.5.1

cpe:2.3:a:apple:quicktime:6.5.1
Apple » Quicktime » Version: 6.5.2

cpe:2.3:a:apple:quicktime:6.5.2
Apple » Quicktime » Version: 7.0

cpe:2.3:a:apple:quicktime:7.0
Apple » Quicktime » Version: 7.0.0

cpe:2.3:a:apple:quicktime:7.0.0
Apple » Quicktime » Version: 7.0.1

cpe:2.3:a:apple:quicktime:7.0.1
Apple » Quicktime » Version: 7.0.2

cpe:2.3:a:apple:quicktime:7.0.2
Apple » Quicktime » Version: 7.0.3

cpe:2.3:a:apple:quicktime:7.0.3
Apple » Quicktime » Version: 7.0.4

cpe:2.3:a:apple:quicktime:7.0.4
Apple » Quicktime » Version: 7.0.8

cpe:2.3:a:apple:quicktime:7.0.8
Apple » Quicktime » Version: 7.1

cpe:2.3:a:apple:quicktime:7.1
Apple » Quicktime » Version: 7.1.0

cpe:2.3:a:apple:quicktime:7.1.0
Apple » Quicktime » Version: 7.1.1

cpe:2.3:a:apple:quicktime:7.1.1
Apple » Quicktime » Version: 7.1.2

cpe:2.3:a:apple:quicktime:7.1.2
Apple » Quicktime » Version: 7.1.3

cpe:2.3:a:apple:quicktime:7.1.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-0059

Products

Pricing

Contact Us