CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-2394

Integer overflow in Apple Quicktime before 7.2 on Mac OS X 10.3.9 and 10.4.9 allows user-assisted remote attackers to execute arbitrary code via crafted (1) title and (2) author fields in an SMIL file, related to improper calculations for memory allocation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.488

EPSS Ranking 97.7%

CVSS Severity

CVSS v2 Score 9.3

References

Products affected by CVE-2007-2394

Apple » Quicktime » Version: N/A

cpe:2.3:a:apple:quicktime:-
Apple » Quicktime » Version: 7.0

cpe:2.3:a:apple:quicktime:7.0
Apple » Quicktime » Version: 7.0.1

cpe:2.3:a:apple:quicktime:7.0.1
Apple » Quicktime » Version: 7.0.2

cpe:2.3:a:apple:quicktime:7.0.2
Apple » Quicktime » Version: 7.0.3

cpe:2.3:a:apple:quicktime:7.0.3
Apple » Quicktime » Version: 7.0.4

cpe:2.3:a:apple:quicktime:7.0.4
Apple » Quicktime » Version: 7.1

cpe:2.3:a:apple:quicktime:7.1
Apple » Quicktime » Version: 7.1.1

cpe:2.3:a:apple:quicktime:7.1.1
Apple » Quicktime » Version: 7.1.2

cpe:2.3:a:apple:quicktime:7.1.2
Apple » Quicktime » Version: 7.1.3

cpe:2.3:a:apple:quicktime:7.1.3
Apple » Quicktime » Version: 7.1.4

cpe:2.3:a:apple:quicktime:7.1.4
Apple » Quicktime » Version: 7.1.5

cpe:2.3:a:apple:quicktime:7.1.5
Apple » Mac Os X » Version: 10.3.9

cpe:2.3:o:apple:mac_os_x:10.3.9
Apple » Mac Os X » Version: 10.4.9

cpe:2.3:o:apple:mac_os_x:10.4.9

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2007-2394

Products

Pricing

Contact Us