Unrated severityNVD Advisory· Published Jul 15, 2007· Updated Jun 16, 2026
CVE-2007-2397
CVE-2007-2397
Description
QuickTime for Java in Apple Quicktime before 7.2 does not properly check permissions, which allows remote attackers to disable security controls and execute arbitrary code via crafted Java applets.
Affected products
13cpe:2.3:a:apple:quicktime:-:*:*:*:*:*:*:*+ 11 more
- cpe:2.3:a:apple:quicktime:-:*:*:*:*:*:*:*
- cpe:2.3:a:apple:quicktime:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:apple:quicktime:7.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:quicktime:7.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:apple:quicktime:7.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:apple:quicktime:7.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:apple:quicktime:7.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:quicktime:7.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:apple:quicktime:7.1.2:*:*:*:*:*:*:*
- cpe:2.3:a:apple:quicktime:7.1.3:*:*:*:*:*:*:*
- cpe:2.3:a:apple:quicktime:7.1.4:*:*:*:*:*:*:*
- cpe:2.3:a:apple:quicktime:7.1.5:*:*:*:*:*:*:*
- Range: <7.2
Patches
Vulnerability mechanics
References
9- docs.info.apple.com/article.htmlnvdPatch
- lists.apple.com/archives/Security-announce/2007/Jul/msg00001.htmlnvdPatch
- secunia.com/advisories/26034nvdPatchVendor Advisory
- www.us-cert.gov/cas/techalerts/TA07-193A.htmlnvdUS Government Resource
- osvdb.org/36132nvd
- www.securityfocus.com/bid/24873nvd
- www.securitytracker.com/idnvd
- www.vupen.com/english/advisories/2007/2510nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/35358nvd
News mentions
0No linked articles in our index yet.