{ "id": "CVE-2007-0711", "sourceIdentifier": "cve@mitre.org", "published": "2007-03-05T22:19:00.000", "lastModified": "2018-10-30T16:25:17.370", "vulnStatus": "Modified", "descriptions": [ { "lang": "en", "value": "Integer overflow in Apple QuickTime before 7.1.5, when installed on Windows operating systems, allows remote user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted 3GP video file." }, { "lang": "es", "value": "Desbordamiento de entero en Apple QuickTime anterior a 7.1.5, cuando est\u00e1 instalado en un sistema operativo Windows, permite a atacantes remotos con la intervenci\u00f3n del usuario provocar una denegaci\u00f3n de servicio (ca\u00edda) y posiblemente ejecutar c\u00f3digo de su elecci\u00f3n mediante un archivo de video 3GP manipulado." } ], "metrics": { "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "accessVector": "NETWORK", "accessComplexity": "MEDIUM", "authentication": "NONE", "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "availabilityImpact": "COMPLETE", "baseScore": 9.3 }, "baseSeverity": "HIGH", "exploitabilityScore": 8.6, "impactScore": 10.0, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "CWE-189" } ] } ], "configurations": [ { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:*:-:windows:*:*:*:*:*", "versionEndIncluding": "7.1.4", "matchCriteriaId": "D4848C0C-7CEA-4C7A-956E-0C460A5E3896" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:3.0:*:*:*:*:*:*:*", "matchCriteriaId": "D8F310A8-F760-4059-987D-42369F360DE4" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:4.1.2:-:windows:*:*:*:*:*", "matchCriteriaId": "03C15EB0-1D29-4DBE-B2C0-FE9365E8D624" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:5.0.1:-:windows:*:*:*:*:*", "matchCriteriaId": "EE3EAE38-9DE6-450D-BCD0-70E590C1F76E" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:5.0.2:-:windows:*:*:*:*:*", "matchCriteriaId": "63D7214C-FAF6-4DCA-8520-8A539BDCD98A" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:6.0:-:windows:*:*:*:*:*", "matchCriteriaId": "0D02D35D-E957-4949-B5DA-F3654B13A308" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:6.0.0:-:windows:*:*:*:*:*", "matchCriteriaId": "FC48F2B6-4BC7-4B57-ADE2-4907287A1AA0" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:6.0.1:-:windows:*:*:*:*:*", "matchCriteriaId": "6469AEDC-6F9D-4CAC-84B2-F13107626FB4" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:6.0.2:-:windows:*:*:*:*:*", "matchCriteriaId": "CB2DFC1B-6452-4575-A099-2E5FD387A8AB" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:6.1.0:-:windows:*:*:*:*:*", "matchCriteriaId": "01A24DD9-5AB8-4091-A293-1A2D7953D455" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:6.1.1:-:windows:*:*:*:*:*", "matchCriteriaId": "D282FA67-0089-4ED5-8168-E3CE8B510BBA" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:6.2.0:-:windows:*:*:*:*:*", "matchCriteriaId": "2B5928A2-C989-4B27-91E1-7019277B2E1F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:6.3.0:-:windows:*:*:*:*:*", "matchCriteriaId": "51292C8C-4905-4C30-B166-ACCE39D9DEE5" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:6.4.0:-:windows:*:*:*:*:*", "matchCriteriaId": "3433487A-98ED-4C28-8659-609BF395E23A" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:6.5.0:-:windows:*:*:*:*:*", "matchCriteriaId": "335F4D89-983A-4C05-937A-EEE802A260D9" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:6.5.1:-:windows:*:*:*:*:*", "matchCriteriaId": "7F189FAB-3BA1-4C1B-975F-E174D5CB8771" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:6.5.2:-:windows:*:*:*:*:*", "matchCriteriaId": "F7A30674-38BA-49B8-9DE0-4C9FB5A62DA8" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.0:-:windows:*:*:*:*:*", "matchCriteriaId": "284BAF97-86BC-4520-BAB6-D75D18FFA1DC" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.0.0:-:windows:*:*:*:*:*", "matchCriteriaId": "3F4075B0-0F9F-466B-8521-2156849247C2" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.0.1:-:windows:*:*:*:*:*", "matchCriteriaId": "DF2A6BCB-108E-4226-BC31-6E0057DFB6D2" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.0.2:-:windows:*:*:*:*:*", "matchCriteriaId": "F8BF6A6A-F734-4395-9305-2E9F52EE888F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.0.3:-:windows:*:*:*:*:*", "matchCriteriaId": "AFCB45F3-397E-42A8-8D08-ECF667939FF8" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.0.4:-:windows:*:*:*:*:*", "matchCriteriaId": "D5C04F70-E2E6-48F4-948D-9D0C7B2A2F3D" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.1.0:-:windows:*:*:*:*:*", "matchCriteriaId": "E1DB3FBD-40F4-41FB-A939-3E3A4D0D85B2" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.1.1:-:windows:*:*:*:*:*", "matchCriteriaId": "F45B47BB-E14F-4437-8828-EF059496BF95" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.1.2:-:windows:*:*:*:*:*", "matchCriteriaId": "9B353211-F90E-4F38-9D0B-B8C7EC00E66F" }, { "vulnerable": true, "criteria": "cpe:2.3:a:apple:quicktime:7.1.3:-:windows:*:*:*:*:*", "matchCriteriaId": "F6A44CA9-D257-4BB7-B5AB-23193F35FCB5" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": false, "criteria": "cpe:2.3:o:microsoft:windows:*:*:*:*:*:*:*:*", "matchCriteriaId": "2CF61F35-5905-4BA9-AD7E-7DB261D2F256" } ] } ] } ], "references": [ { "url": "http://docs.info.apple.com/article.html?artnum=305149", "source": "cve@mitre.org", "tags": [ "Patch", "Vendor Advisory" ] }, { "url": "http://lists.apple.com/archives/Security-announce/2007/Mar/msg00000.html", "source": "cve@mitre.org", "tags": [ "Vendor Advisory" ] }, { "url": "http://www.kb.cert.org/vuls/id/568689", "source": "cve@mitre.org", "tags": [ "US Government Resource" ] }, { "url": "http://www.securityfocus.com/bid/22827", "source": "cve@mitre.org" }, { "url": "http://www.securitytracker.com/id?1017725", "source": "cve@mitre.org" }, { "url": "http://www.us-cert.gov/cas/techalerts/TA07-065A.html", "source": "cve@mitre.org", "tags": [ "Patch", "US Government Resource" ] }, { "url": "http://www.vupen.com/english/advisories/2007/0825", "source": "cve@mitre.org" }, { "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/32814", "source": "cve@mitre.org" } ] }