VYPR
Unrated severityNVD Advisory· Published Jul 15, 2007· Updated Jun 16, 2026

CVE-2007-2397

CVE-2007-2397

Description

QuickTime for Java in Apple Quicktime before 7.2 does not properly check permissions, which allows remote attackers to disable security controls and execute arbitrary code via crafted Java applets.

Affected products

13
  • cpe:2.3:a:apple:quicktime:-:*:*:*:*:*:*:*+ 11 more
    • cpe:2.3:a:apple:quicktime:-:*:*:*:*:*:*:*
    • cpe:2.3:a:apple:quicktime:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:apple:quicktime:7.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:apple:quicktime:7.0.2:*:*:*:*:*:*:*
    • cpe:2.3:a:apple:quicktime:7.0.3:*:*:*:*:*:*:*
    • cpe:2.3:a:apple:quicktime:7.0.4:*:*:*:*:*:*:*
    • cpe:2.3:a:apple:quicktime:7.1:*:*:*:*:*:*:*
    • cpe:2.3:a:apple:quicktime:7.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:apple:quicktime:7.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:apple:quicktime:7.1.3:*:*:*:*:*:*:*
    • cpe:2.3:a:apple:quicktime:7.1.4:*:*:*:*:*:*:*
    • cpe:2.3:a:apple:quicktime:7.1.5:*:*:*:*:*:*:*
  • Range: <7.2

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.