PT-2007-4986 · Apple · Jdirect+1

Published

2007-08-03

Updated

2017-07-29

CVE-2007-3745

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Java interface to CoreAudio versions 10.3.9 through 10.4.10

Description The issue concerns an unsafe interface exposed by JDirect in the Java interface to CoreAudio, allowing remote attackers to free arbitrary memory and execute arbitrary code.

Recommendations For versions 10.3.9 through 10.4.10, consider restricting access to the JDirect interface until a patch is available.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-3745

Affected Products

Jdirect

Java Interface To Coreaudio

PT-2007-4986 · Apple · Jdirect+1

CVE-2007-3745

Related Identifiers

Affected Products

References · 8