Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2007-0712

Опубликовано: 05 мар. 2007
Источник: nvd
CVSS2: 9.3
EPSS Средний

Описание

Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows remote user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MIDI file.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:apple:quicktime:*:-:windows:*:*:*:*:*
Версия до 7.1.4 (включая)
cpe:2.3:a:apple:quicktime:3.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:quicktime:4.1.2:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:5.0.1:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:5.0.2:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.0:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.0.0:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.0.1:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.0.2:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.1.0:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.1.1:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.2.0:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.3.0:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.4.0:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.5.0:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.5.1:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.5.2:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:7.0:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:7.0.0:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:7.0.1:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:7.0.2:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:7.0.3:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:7.0.4:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:7.1.0:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:7.1.1:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:7.1.2:-:windows:*:*:*:*:*
cpe:2.3:a:apple:quicktime:7.1.3:-:windows:*:*:*:*:*
cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*
Конфигурация 2

Одновременно

Одно из

cpe:2.3:a:apple:quicktime:*:-:mac:*:*:*:*:*
Версия до 7.1.4 (включая)
cpe:2.3:a:apple:quicktime:3.0:*:*:*:*:*:*:*
cpe:2.3:a:apple:quicktime:4.1.2:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:5.0.1:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:5.0.2:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.0.0:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.0.1:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.0.2:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.1.0:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.1.1:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.2.0:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.3.0:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.4.0:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.5.0:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.5.1:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:6.5.2:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:7.0.0:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:7.0.1:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:7.0.2:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:7.0.3:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:7.0.4:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:7.1.0:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:7.1.1:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:7.1.2:-:mac:*:*:*:*:*
cpe:2.3:a:apple:quicktime:7.1.3:-:mac:*:*:*:*:*

Одно из

cpe:2.3:o:apple:mac_os_x:10.3.9:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.4:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.4.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.4.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.4.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.4.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.4.4:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.4.5:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.4.6:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.4.7:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.4.8:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.4.9:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.4.10:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.4.11:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.5:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.5.0:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.5.1:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.5.2:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.5.3:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.5.4:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.5.5:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:10.5.6:*:*:*:*:*:*:*

EPSS

Процентиль: 96%
0.24989
Средний

9.3 Critical

CVSS2

Дефекты

CWE-119

Связанные уязвимости

github логотип

GHSA-2343-pv68-2fw3

github
больше 3 лет назад

Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows remote user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted MIDI file.

EPSS

Процентиль: 96%
0.24989
Средний

9.3 Critical

CVSS2

Дефекты

CWE-119