CVE-2007-4676: Buffer Overflow
First published: Wed Nov 07 2007(Updated: )
Heap-based buffer overflow in Apple QuickTime before 7.3 allows remote attackers to execute arbitrary code via malformed elements when parsing (1) Poly type (0x0070 through 0x0074) and (2) PackBitsRgn field (0x0099) opcodes in a PICT image.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apple QuickTime Player | <7.3 | |
| Apple Mac OS X | =10.3.9 | |
| Apple Mac OS X | =10.4.10 | |
| Apple Mac OS X | =10.5 | |
| Microsoft Windows Vista | ||
| Microsoft Windows XP | =sp2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.zerodayinitiative.com/advisories/ZDI-07-066.html
- http://www.zerodayinitiative.com/advisories/ZDI-07-067.html
- http://docs.info.apple.com/article.html?artnum=306896
- http://lists.apple.com/archives/Security-announce/2007/Nov/msg00000.html
- http://www.securitytracker.com/id?1018894
- http://secunia.com/advisories/27523
- http://www.us-cert.gov/cas/techalerts/TA07-310A.html
- http://www.kb.cert.org/vuls/id/690515
- http://www.securityfocus.com/bid/26345
- http://securityreason.com/securityalert/3351
- http://osvdb.org/38546
- http://www.vupen.com/english/advisories/2007/3723
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38281
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38280
- http://www.securityfocus.com/archive/1/483313/100/0/threaded
- http://www.securityfocus.com/archive/1/483311/100/0/threaded
- collector/nvd-historical
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/weakness
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/apple
- canonical/apple quicktime player
- canonical/apple mac os x
- version/apple mac os x/10.3.9
- version/apple mac os x/10.4.10
- version/apple mac os x/10.5
- vendor/microsoft
- canonical/microsoft windows vista
- canonical/microsoft windows xp
- version/microsoft windows xp/sp2