CVE Vulnerabilities

CVE-2007-4674

Published: Nov 27, 2007 | Modified: Oct 15, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

An integer arithmetic error in Apple QuickTime 7.2 allows remote attackers to execute arbitrary code via a crafted movie file containing a movie atom with a large size value, which triggers a stack-based buffer overflow.

Affected Software

Name Vendor Start Version End Version
Quicktime Apple 7.2 7.2
Quicktime Apple 7.2 7.2
Quicktime Apple 7.2 7.2
Quicktime Apple 7.2 7.2
Quicktime Apple 7.2 7.2

References