CVE-2007-0713 | Vulnerability Database | Aqua Security

Heap-based buffer overflow in Apple QuickTime before 7.1.5 allows remote user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted QuickTime movie file.

Affected Software

Name	Vendor	Start Version	End Version
Quicktime	Apple	7.0 (including)	7.0 (including)
Quicktime	Apple	7.0.1 (including)	7.0.1 (including)
Quicktime	Apple	7.0.2 (including)	7.0.2 (including)
Quicktime	Apple	7.0.3 (including)	7.0.3 (including)
Quicktime	Apple	7.0.4 (including)	7.0.4 (including)
Quicktime	Apple	7.1 (including)	7.1 (including)
Quicktime	Apple	7.1.1 (including)	7.1.1 (including)
Quicktime	Apple	7.1.2 (including)	7.1.2 (including)
Quicktime	Apple	7.1.3 (including)	7.1.3 (including)
Quicktime	Apple	7.1.4 (including)	7.1.4 (including)

References

http://docs.info.apple.com/article.html?artnum=305149
http://lists.apple.com/archives/Security-announce/2007/Mar/msg00000.html
http://secunia.com/advisories/24359
http://www.kb.cert.org/vuls/id/880561
http://www.piotrbania.com/all/adv/quicktime-heap-adv-7.1.txt
http://www.securityfocus.com/archive/1/461983/100/0/threaded
http://www.securityfocus.com/bid/22827
http://www.securityfocus.com/bid/22843
http://www.securitytracker.com/id?1017725
http://www.us-cert.gov/cas/techalerts/TA07-065A.html
http://www.vupen.com/english/advisories/2007/0825
https://exchange.xforce.ibmcloud.com/vulnerabilities/32817
http://docs.info.apple.com/article.html?artnum=305149
http://lists.apple.com/archives/Security-announce/2007/Mar/msg00000.html
http://secunia.com/advisories/24359
http://www.kb.cert.org/vuls/id/880561
http://www.piotrbania.com/all/adv/quicktime-heap-adv-7.1.txt
http://www.securityfocus.com/archive/1/461983/100/0/threaded
http://www.securityfocus.com/bid/22827
http://www.securityfocus.com/bid/22843
http://www.securitytracker.com/id?1017725
http://www.us-cert.gov/cas/techalerts/TA07-065A.html
http://www.vupen.com/english/advisories/2007/0825
https://exchange.xforce.ibmcloud.com/vulnerabilities/32817

NVD	https://nvd.nist.gov/vuln/detail/CVE-2007-0713
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html