CVE Vulnerabilities

CVE-2007-2388

Published: May 29, 2007 | Modified: May 18, 2011
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Apple QuickTime for Java 7.1.6 on Mac OS X and Windows does not properly restrict QTObject subclassing, which allows remote attackers to execute arbitrary code via a web page containing a user-defined class that accesses unsafe functions that can be leveraged to write to arbitrary memory locations.

Affected Software

Name Vendor Start Version End Version
Mac_os_x Apple * *
Mac_os_x Apple 10.0 (including) 10.0 (including)
Mac_os_x Apple 10.0.1 (including) 10.0.1 (including)
Mac_os_x Apple 10.0.2 (including) 10.0.2 (including)
Mac_os_x Apple 10.0.3 (including) 10.0.3 (including)
Mac_os_x Apple 10.0.4 (including) 10.0.4 (including)
Mac_os_x Apple 10.1 (including) 10.1 (including)
Mac_os_x Apple 10.1.1 (including) 10.1.1 (including)
Mac_os_x Apple 10.1.2 (including) 10.1.2 (including)
Mac_os_x Apple 10.1.3 (including) 10.1.3 (including)
Mac_os_x Apple 10.1.4 (including) 10.1.4 (including)
Mac_os_x Apple 10.1.5 (including) 10.1.5 (including)
Mac_os_x Apple 10.2 (including) 10.2 (including)
Mac_os_x Apple 10.2.1 (including) 10.2.1 (including)
Mac_os_x Apple 10.2.2 (including) 10.2.2 (including)
Mac_os_x Apple 10.2.3 (including) 10.2.3 (including)
Mac_os_x Apple 10.2.4 (including) 10.2.4 (including)
Mac_os_x Apple 10.2.5 (including) 10.2.5 (including)
Mac_os_x Apple 10.2.6 (including) 10.2.6 (including)
Mac_os_x Apple 10.2.7 (including) 10.2.7 (including)
Mac_os_x Apple 10.2.8 (including) 10.2.8 (including)
Mac_os_x Apple 10.3 (including) 10.3 (including)
Mac_os_x Apple 10.3.1 (including) 10.3.1 (including)
Mac_os_x Apple 10.3.2 (including) 10.3.2 (including)
Mac_os_x Apple 10.3.3 (including) 10.3.3 (including)
Mac_os_x Apple 10.3.4 (including) 10.3.4 (including)
Mac_os_x Apple 10.3.5 (including) 10.3.5 (including)
Mac_os_x Apple 10.3.6 (including) 10.3.6 (including)
Mac_os_x Apple 10.3.7 (including) 10.3.7 (including)
Mac_os_x Apple 10.3.8 (including) 10.3.8 (including)
Mac_os_x Apple 10.3.9 (including) 10.3.9 (including)
Mac_os_x Apple 10.4 (including) 10.4 (including)
Mac_os_x Apple 10.4.1 (including) 10.4.1 (including)
Mac_os_x Apple 10.4.2 (including) 10.4.2 (including)
Mac_os_x Apple 10.4.3 (including) 10.4.3 (including)
Mac_os_x Apple 10.4.4 (including) 10.4.4 (including)
Mac_os_x Apple 10.4.5 (including) 10.4.5 (including)
Mac_os_x Apple 10.4.6 (including) 10.4.6 (including)
Mac_os_x Apple 10.4.7 (including) 10.4.7 (including)
Mac_os_x Apple 10.4.8 (including) 10.4.8 (including)
Mac_os_x Apple 10.4.9 (including) 10.4.9 (including)
All_windows Microsoft * *

References