9.3

CVE-2007-3751

Unspecified vulnerability in QuickTime for Java in Apple QuickTime before 7.3 allows remote attackers to execute arbitrary code via untrusted Java applets that gain privileges via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
ApplemacOS X Version10.3.9
   AppleQuicktime Version < 7.3
ApplemacOS X Version10.4.10
   AppleQuicktime Version < 7.3
ApplemacOS X Version10.5
   AppleQuicktime Version < 7.3
MicrosoftWindows Vista
   AppleQuicktime Version < 7.3
MicrosoftWindows Xp Updatesp2
   AppleQuicktime Version < 7.3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 25.66% 0.977
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://docs.info.apple.com/article.html?artnum=306896
Vendor Advisory
http://lists.apple.com/archives/Security-announce/2007/Nov/msg00000.html
Patch
Vendor Advisory
http://secunia.com/advisories/27523
Patch
Vendor Advisory
http://www.securitytracker.com/id?1018894
Third Party Advisory
VDB Entry
http://www.us-cert.gov/cas/techalerts/TA07-310A.html
Third Party Advisory
US Government Resource
http://www.vupen.com/english/advisories/2007/3723
Third Party Advisory
Permissions Required
http://osvdb.org/38548
Broken Link
http://www.kb.cert.org/vuls/id/319771
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/26339
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/38271
Third Party Advisory
VDB Entry