CVE-2007-5857

Name of the Vulnerable Software and Affected Versions Apple Mac OS X version 10.5.1

Description The issue concerns a problem where Quick Look in Apple Mac OS X does not prevent a movie from accessing URLs when the movie file is previewed or if an icon is created. This could potentially allow remote attackers to obtain sensitive information via HREFTrack.

Recommendations For Apple Mac OS X version 10.5.1, consider avoiding the use of Quick Look for movie files until a fix is available. As a temporary workaround, restrict access to sensitive information when previewing movie files or creating icons.