VYPR
Unrated severityNVD Advisory· Published Nov 27, 2007· Updated Jun 16, 2026

CVE-2007-4674

CVE-2007-4674

Description

An "integer arithmetic" error in Apple QuickTime 7.2 allows remote attackers to execute arbitrary code via a crafted movie file containing a movie atom with a large size value, which triggers a stack-based buffer overflow.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

6
  • cpe:2.3:a:apple:quicktime:7.2:*:_mac_os_x_v10.3.9:*:*:*:*:*+ 5 more
    • cpe:2.3:a:apple:quicktime:7.2:*:_mac_os_x_v10.3.9:*:*:*:*:*
    • cpe:2.3:a:apple:quicktime:7.2:*:_mac_os_x_v10.4.9:*:*:*:*:*
    • cpe:2.3:a:apple:quicktime:7.2:*:_mac_os_x_v10.5:*:*:*:*:*
    • cpe:2.3:a:apple:quicktime:7.2:*:windows_vista:*:*:*:*:*
    • cpe:2.3:a:apple:quicktime:7.2:*:windows_xp_sp2:*:*:*:*:*
    • (no CPE)range: = 7.2

Patches

Vulnerability mechanics

References

11

News mentions

0

No linked articles in our index yet.