PT-2007-3726 · Apple · Apple Quicktime

Adam Gowdiak

Publicado

2007-07-15

Atualizado

2018-10-30

CVE-2007-2393

CVSS v2.0

9.3

Alta

Vetor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Apple Quicktime versions prior to 7.2

Description The issue concerns the design of QuickTime for Java, which allows remote attackers to bypass certain security controls. This can be achieved via Java applets and may lead to writing to process memory, possibly resulting in arbitrary code execution.

Recommendations For versions prior to 7.2, update to version 7.2 or later to resolve the issue.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2007-2393

Produtos afetados

Apple Quicktime

PT-2007-3726 · Apple · Apple Quicktime

CVE-2007-2393

Identificadores relacionados

Produtos afetados

Referências · 12