cvelistv5 - CVE-2007-0015

CVE-2007-0015 (GCVE-0-2007-0015)

Vulnerability from cvelistv5 – Published: 2007-01-01 23:00 – Updated: 2024-08-07 12:03

Summary

Buffer overflow in Apple QuickTime 7.1.3 allows remote attackers to execute arbitrary code via a long rtsp:// URI.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://www.kb.cert.org/vuls/id/442497	third-party-advisoryx_refsource_CERT-VN
	http://lists.apple.com/archives/Security-announce…	vendor-advisoryx_refsource_APPLE
	http://isc.sans.org/diary.html?storyid=2094	x_refsource_MISC
	http://www.osvdb.org/31023	vdb-entryx_refsource_OSVDB
	http://www.us-cert.gov/cas/techalerts/TA07-005A.html	third-party-advisoryx_refsource_CERT
	http://secunia.com/blog/7/	x_refsource_MISC
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://secunia.com/advisories/23540	third-party-advisoryx_refsource_SECUNIA
	http://www.securityfocus.com/bid/21829	vdb-entryx_refsource_BID
	https://www.exploit-db.com/exploits/3064	exploitx_refsource_EXPLOIT-DB
	http://docs.info.apple.com/article.html?artnum=304989	x_refsource_CONFIRM
	http://projects.info-pull.com/moab/MOAB-01-01-2007.html	x_refsource_MISC
	http://www.vupen.com/english/advisories/2007/0001	vdb-entryx_refsource_VUPEN
	http://landonf.bikemonkey.org/code/macosx/MOAB_Da…	x_refsource_MISC
	http://securitytracker.com/id?1017461	vdb-entryx_refsource_SECTRACK

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T12:03:37.440Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "VU#442497",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/442497"
          },
          {
            "name": "APPLE-SA-2007-01-23",
            "tags": [
              "vendor-advisory",
              "x_refsource_APPLE",
              "x_transferred"
            ],
            "url": "http://lists.apple.com/archives/Security-announce/2007/Jan/msg00000.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://isc.sans.org/diary.html?storyid=2094"
          },
          {
            "name": "31023",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://www.osvdb.org/31023"
          },
          {
            "name": "TA07-005A",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT",
              "x_transferred"
            ],
            "url": "http://www.us-cert.gov/cas/techalerts/TA07-005A.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://secunia.com/blog/7/"
          },
          {
            "name": "quicktime-rtsp-url-bo(31203)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31203"
          },
          {
            "name": "23540",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/23540"
          },
          {
            "name": "21829",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/21829"
          },
          {
            "name": "3064",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "https://www.exploit-db.com/exploits/3064"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://docs.info.apple.com/article.html?artnum=304989"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://projects.info-pull.com/moab/MOAB-01-01-2007.html"
          },
          {
            "name": "ADV-2007-0001",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2007/0001"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://landonf.bikemonkey.org/code/macosx/MOAB_Day_1.20070102060815.15950.zadder.local.html"
          },
          {
            "name": "1017461",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1017461"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2007-01-01T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Buffer overflow in Apple QuickTime 7.1.3 allows remote attackers to execute arbitrary code via a long rtsp:// URI."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-10-18T14:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "VU#442497",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/442497"
        },
        {
          "name": "APPLE-SA-2007-01-23",
          "tags": [
            "vendor-advisory",
            "x_refsource_APPLE"
          ],
          "url": "http://lists.apple.com/archives/Security-announce/2007/Jan/msg00000.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://isc.sans.org/diary.html?storyid=2094"
        },
        {
          "name": "31023",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://www.osvdb.org/31023"
        },
        {
          "name": "TA07-005A",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT"
          ],
          "url": "http://www.us-cert.gov/cas/techalerts/TA07-005A.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://secunia.com/blog/7/"
        },
        {
          "name": "quicktime-rtsp-url-bo(31203)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31203"
        },
        {
          "name": "23540",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/23540"
        },
        {
          "name": "21829",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/21829"
        },
        {
          "name": "3064",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "https://www.exploit-db.com/exploits/3064"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://docs.info.apple.com/article.html?artnum=304989"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://projects.info-pull.com/moab/MOAB-01-01-2007.html"
        },
        {
          "name": "ADV-2007-0001",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2007/0001"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://landonf.bikemonkey.org/code/macosx/MOAB_Day_1.20070102060815.15950.zadder.local.html"
        },
        {
          "name": "1017461",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1017461"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-0015",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Buffer overflow in Apple QuickTime 7.1.3 allows remote attackers to execute arbitrary code via a long rtsp:// URI."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "VU#442497",
              "refsource": "CERT-VN",
              "url": "http://www.kb.cert.org/vuls/id/442497"
            },
            {
              "name": "APPLE-SA-2007-01-23",
              "refsource": "APPLE",
              "url": "http://lists.apple.com/archives/Security-announce/2007/Jan/msg00000.html"
            },
            {
              "name": "http://isc.sans.org/diary.html?storyid=2094",
              "refsource": "MISC",
              "url": "http://isc.sans.org/diary.html?storyid=2094"
            },
            {
              "name": "31023",
              "refsource": "OSVDB",
              "url": "http://www.osvdb.org/31023"
            },
            {
              "name": "TA07-005A",
              "refsource": "CERT",
              "url": "http://www.us-cert.gov/cas/techalerts/TA07-005A.html"
            },
            {
              "name": "http://secunia.com/blog/7/",
              "refsource": "MISC",
              "url": "http://secunia.com/blog/7/"
            },
            {
              "name": "quicktime-rtsp-url-bo(31203)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31203"
            },
            {
              "name": "23540",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/23540"
            },
            {
              "name": "21829",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/21829"
            },
            {
              "name": "3064",
              "refsource": "EXPLOIT-DB",
              "url": "https://www.exploit-db.com/exploits/3064"
            },
            {
              "name": "http://docs.info.apple.com/article.html?artnum=304989",
              "refsource": "CONFIRM",
              "url": "http://docs.info.apple.com/article.html?artnum=304989"
            },
            {
              "name": "http://projects.info-pull.com/moab/MOAB-01-01-2007.html",
              "refsource": "MISC",
              "url": "http://projects.info-pull.com/moab/MOAB-01-01-2007.html"
            },
            {
              "name": "ADV-2007-0001",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2007/0001"
            },
            {
              "name": "http://landonf.bikemonkey.org/code/macosx/MOAB_Day_1.20070102060815.15950.zadder.local.html",
              "refsource": "MISC",
              "url": "http://landonf.bikemonkey.org/code/macosx/MOAB_Day_1.20070102060815.15950.zadder.local.html"
            },
            {
              "name": "1017461",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1017461"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2007-0015",
    "datePublished": "2007-01-01T23:00:00",
    "dateReserved": "2007-01-01T00:00:00",
    "dateUpdated": "2024-08-07T12:03:37.440Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:apple:quicktime:7.1.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"952A8015-B18B-481C-AC17-60F0D7EEE085\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Buffer overflow in Apple QuickTime 7.1.3 allows remote attackers to execute arbitrary code via a long rtsp:// URI.\"}, {\"lang\": \"es\", \"value\": \"Un desbordamiento de b\\u00fafer en Apple QuickTime versi\\u00f3n 7.1.3, permite a atacantes remotos ejecutar c\\u00f3digo arbitrario por medio de un URI rtsp:// largo.\"}]",
      "id": "CVE-2007-0015",
      "lastModified": "2024-11-21T00:24:46.480",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:P/I:P/A:P\", \"baseScore\": 6.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": true, \"userInteractionRequired\": true}]}",
      "published": "2007-01-01T23:28:00.000",
      "references": "[{\"url\": \"http://docs.info.apple.com/article.html?artnum=304989\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://isc.sans.org/diary.html?storyid=2094\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://landonf.bikemonkey.org/code/macosx/MOAB_Day_1.20070102060815.15950.zadder.local.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lists.apple.com/archives/Security-announce/2007/Jan/msg00000.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://projects.info-pull.com/moab/MOAB-01-01-2007.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://secunia.com/advisories/23540\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/blog/7/\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://securitytracker.com/id?1017461\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://www.kb.cert.org/vuls/id/442497\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"US Government Resource\"]}, {\"url\": \"http://www.osvdb.org/31023\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/21829\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://www.us-cert.gov/cas/techalerts/TA07-005A.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2007/0001\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/31203\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://www.exploit-db.com/exploits/3064\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://docs.info.apple.com/article.html?artnum=304989\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://isc.sans.org/diary.html?storyid=2094\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://landonf.bikemonkey.org/code/macosx/MOAB_Day_1.20070102060815.15950.zadder.local.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.apple.com/archives/Security-announce/2007/Jan/msg00000.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://projects.info-pull.com/moab/MOAB-01-01-2007.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://secunia.com/advisories/23540\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/blog/7/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://securitytracker.com/id?1017461\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://www.kb.cert.org/vuls/id/442497\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"US Government Resource\"]}, {\"url\": \"http://www.osvdb.org/31023\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/21829\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\"]}, {\"url\": \"http://www.us-cert.gov/cas/techalerts/TA07-005A.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2007/0001\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/31203\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.exploit-db.com/exploits/3064\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2007-0015\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2007-01-01T23:28:00.000\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Buffer overflow in Apple QuickTime 7.1.3 allows remote attackers to execute arbitrary code via a long rtsp:// URI.\"},{\"lang\":\"es\",\"value\":\"Un desbordamiento de b\u00fafer en Apple QuickTime versi\u00f3n 7.1.3, permite a atacantes remotos ejecutar c\u00f3digo arbitrario por medio de un URI rtsp:// largo.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:P/A:P\",\"baseScore\":6.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":true,\"userInteractionRequired\":true}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apple:quicktime:7.1.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"952A8015-B18B-481C-AC17-60F0D7EEE085\"}]}]}],\"references\":[{\"url\":\"http://docs.info.apple.com/article.html?artnum=304989\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://isc.sans.org/diary.html?storyid=2094\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://landonf.bikemonkey.org/code/macosx/MOAB_Day_1.20070102060815.15950.zadder.local.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.apple.com/archives/Security-announce/2007/Jan/msg00000.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://projects.info-pull.com/moab/MOAB-01-01-2007.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"http://secunia.com/advisories/23540\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/blog/7/\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://securitytracker.com/id?1017461\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"http://www.kb.cert.org/vuls/id/442497\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"US Government Resource\"]},{\"url\":\"http://www.osvdb.org/31023\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/21829\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\"]},{\"url\":\"http://www.us-cert.gov/cas/techalerts/TA07-005A.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.vupen.com/english/advisories/2007/0001\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/31203\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.exploit-db.com/exploits/3064\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://docs.info.apple.com/article.html?artnum=304989\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://isc.sans.org/diary.html?storyid=2094\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://landonf.bikemonkey.org/code/macosx/MOAB_Day_1.20070102060815.15950.zadder.local.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.apple.com/archives/Security-announce/2007/Jan/msg00000.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://projects.info-pull.com/moab/MOAB-01-01-2007.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"http://secunia.com/advisories/23540\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/blog/7/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://securitytracker.com/id?1017461\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"http://www.kb.cert.org/vuls/id/442497\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"US Government Resource\"]},{\"url\":\"http://www.osvdb.org/31023\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/21829\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\"]},{\"url\":\"http://www.us-cert.gov/cas/techalerts/TA07-005A.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.vupen.com/english/advisories/2007/0001\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/31203\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.exploit-db.com/exploits/3064\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

GSD-2007-0015

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Buffer overflow in Apple QuickTime 7.1.3 allows remote attackers to execute arbitrary code via a long rtsp:// URI.

Aliases

CVE-2007-0015

Aliases

CVE-2007-0015

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2007-0015",
    "description": "Buffer overflow in Apple QuickTime 7.1.3 allows remote attackers to execute arbitrary code via a long rtsp:// URI.",
    "id": "GSD-2007-0015",
    "references": [
      "https://packetstormsecurity.com/files/cve/CVE-2007-0015"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2007-0015"
      ],
      "details": "Buffer overflow in Apple QuickTime 7.1.3 allows remote attackers to execute arbitrary code via a long rtsp:// URI.",
      "id": "GSD-2007-0015",
      "modified": "2023-12-13T01:21:36.022888Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2007-0015",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Buffer overflow in Apple QuickTime 7.1.3 allows remote attackers to execute arbitrary code via a long rtsp:// URI."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "VU#442497",
            "refsource": "CERT-VN",
            "url": "http://www.kb.cert.org/vuls/id/442497"
          },
          {
            "name": "APPLE-SA-2007-01-23",
            "refsource": "APPLE",
            "url": "http://lists.apple.com/archives/Security-announce/2007/Jan/msg00000.html"
          },
          {
            "name": "http://isc.sans.org/diary.html?storyid=2094",
            "refsource": "MISC",
            "url": "http://isc.sans.org/diary.html?storyid=2094"
          },
          {
            "name": "31023",
            "refsource": "OSVDB",
            "url": "http://www.osvdb.org/31023"
          },
          {
            "name": "TA07-005A",
            "refsource": "CERT",
            "url": "http://www.us-cert.gov/cas/techalerts/TA07-005A.html"
          },
          {
            "name": "http://secunia.com/blog/7/",
            "refsource": "MISC",
            "url": "http://secunia.com/blog/7/"
          },
          {
            "name": "quicktime-rtsp-url-bo(31203)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31203"
          },
          {
            "name": "23540",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/23540"
          },
          {
            "name": "21829",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/21829"
          },
          {
            "name": "3064",
            "refsource": "EXPLOIT-DB",
            "url": "https://www.exploit-db.com/exploits/3064"
          },
          {
            "name": "http://docs.info.apple.com/article.html?artnum=304989",
            "refsource": "CONFIRM",
            "url": "http://docs.info.apple.com/article.html?artnum=304989"
          },
          {
            "name": "http://projects.info-pull.com/moab/MOAB-01-01-2007.html",
            "refsource": "MISC",
            "url": "http://projects.info-pull.com/moab/MOAB-01-01-2007.html"
          },
          {
            "name": "ADV-2007-0001",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2007/0001"
          },
          {
            "name": "http://landonf.bikemonkey.org/code/macosx/MOAB_Day_1.20070102060815.15950.zadder.local.html",
            "refsource": "MISC",
            "url": "http://landonf.bikemonkey.org/code/macosx/MOAB_Day_1.20070102060815.15950.zadder.local.html"
          },
          {
            "name": "1017461",
            "refsource": "SECTRACK",
            "url": "http://securitytracker.com/id?1017461"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:apple:quicktime:7.1.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-0015"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Buffer overflow in Apple QuickTime 7.1.3 allows remote attackers to execute arbitrary code via a long rtsp:// URI."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://projects.info-pull.com/moab/MOAB-01-01-2007.html",
              "refsource": "MISC",
              "tags": [
                "Exploit"
              ],
              "url": "http://projects.info-pull.com/moab/MOAB-01-01-2007.html"
            },
            {
              "name": "21829",
              "refsource": "BID",
              "tags": [
                "Exploit"
              ],
              "url": "http://www.securityfocus.com/bid/21829"
            },
            {
              "name": "http://landonf.bikemonkey.org/code/macosx/MOAB_Day_1.20070102060815.15950.zadder.local.html",
              "refsource": "MISC",
              "tags": [],
              "url": "http://landonf.bikemonkey.org/code/macosx/MOAB_Day_1.20070102060815.15950.zadder.local.html"
            },
            {
              "name": "1017461",
              "refsource": "SECTRACK",
              "tags": [
                "Exploit"
              ],
              "url": "http://securitytracker.com/id?1017461"
            },
            {
              "name": "VU#442497",
              "refsource": "CERT-VN",
              "tags": [
                "Patch",
                "US Government Resource"
              ],
              "url": "http://www.kb.cert.org/vuls/id/442497"
            },
            {
              "name": "23540",
              "refsource": "SECUNIA",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/23540"
            },
            {
              "name": "http://isc.sans.org/diary.html?storyid=2094",
              "refsource": "MISC",
              "tags": [],
              "url": "http://isc.sans.org/diary.html?storyid=2094"
            },
            {
              "name": "http://secunia.com/blog/7/",
              "refsource": "MISC",
              "tags": [],
              "url": "http://secunia.com/blog/7/"
            },
            {
              "name": "http://docs.info.apple.com/article.html?artnum=304989",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://docs.info.apple.com/article.html?artnum=304989"
            },
            {
              "name": "APPLE-SA-2007-01-23",
              "refsource": "APPLE",
              "tags": [],
              "url": "http://lists.apple.com/archives/Security-announce/2007/Jan/msg00000.html"
            },
            {
              "name": "TA07-005A",
              "refsource": "CERT",
              "tags": [
                "US Government Resource"
              ],
              "url": "http://www.us-cert.gov/cas/techalerts/TA07-005A.html"
            },
            {
              "name": "31023",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://www.osvdb.org/31023"
            },
            {
              "name": "ADV-2007-0001",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2007/0001"
            },
            {
              "name": "quicktime-rtsp-url-bo(31203)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31203"
            },
            {
              "name": "3064",
              "refsource": "EXPLOIT-DB",
              "tags": [],
              "url": "https://www.exploit-db.com/exploits/3064"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": true,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": true
        }
      },
      "lastModifiedDate": "2017-10-19T01:29Z",
      "publishedDate": "2007-01-01T23:28Z"
    }
  }
}

CERTA-2007-ALE-017

Vulnerability from certfr_alerte - Published: - Updated:

Une vulnérabilité a été identifiée dans le logiciel multimédia Apple QuickTime. Ce dernier ne manipule pas correctement un champ dans l'en-tête des réponses retournées par le serveur de flux RTSP. Une personne malveillante pourrait inciter un utilisateur à se rendre sur un tel serveur, ce qui pourrait alors perturber son système ou permettre à l'attaquant d'exécuter des commandes arbitraires.

Description

Une vulnérabilité a été identifiée dans le logiciel multimédia Apple QuickTime. Ce dernier ne manipulerait pas correctement un champ dans l'en-tête des réponses retournées par le serveur de flux RTSP.

RTSP (pour Real Time Streaming Protocol) est un protocole permettant d'établir et de contrôler des flux synchronisés de médias continus (streaming), qu'ils soient audio ou vidéo. Il est conceptuellement très proche de HTTP : il est à état et utilise la notion de session.

Lorsque le client envoie une requête au serveur, ce dernier retourne une réponse, avec un champ Content-Type.

Apple QuickTime n'interpréterait pas correctement la valeur de ce champ. Cette vulnérabilité peut ainsi être exploitée par une personne distante, qui aura pris soin de mettre en place un serveur de flux répondant par cette vulnérabilité. L'utilisateur amené à récupérer le flux multimédia, par un lien par exemple provoquera le dysfonctionnement, voire l'exécution de code arbitraire sur son sytème vulnérable.

Contournement provisoire

5.1 De manière générale

Il est préférable, dans l'attente d'un correctif, d'utiliser un lecteur multimédia alternatif.

L'administrateur du réseau peut également vérifier que les flux sortants TCP/UDP vers le port 554 sont bloqués. Ces ports sont ceux par défaut attribués au protocole Real Time Streaming Protocol, mais peuvent être changés et remplacés par n'importe quel autre port convenu côté serveur et côté client. Cette mesure n'est donc pas suffisante.

Les navigateurs offrent également la possibilité de désactiver les modules ou plugins.

Les recommandations standards s'appliquent toujours : l'interprétation de codes dynamiques comme Javascript doit être désactivée par défaut.

5.2 Sous Microsoft Windows :

Désactiver la prise en charge des liens rtsp:// dans Quicktime en décochant la case
Préférences de Quicktime -> Types de fichiers -> Diffusion -> Descripteur de flux RTSP ;
Désactiver l'association faite entre le type de fichier et QuickTime, en supprimant les clés de registre de la forme
HKEY_CLASSES_ROOT/TT>

5.3 Sous Apple MacOS X :

Désactiver la prise en charge des liens rtsp:// dans QuickTime en décochant la case
Préférences de Quicktime -> Avancé -> Réglages MIME -> Diffusion -> Descripteur de flux RTSP ;

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Apple	N/A	La version 7.5 d'Apple iTunes ainsi que les versions antérieures.
	Apple	N/A	La version 7.3 d'Apple QuickTime ainsi que les versions antérieures ;

References

Title

Publication Time

Tags

Bulletin de sécurité de l'US-CERT VU#659761 du 24 novembre 2007	None	vendor-advisory
Désinstaller des modules ou plugins sous Mozilla :	-	other
Site de téléchargement d'Apple QuickTime :	-	other
Note de vulnérabilité de l'US-CERT VU#659761 du 24 novembre 2007 :	-	other
Bulletin de sécurité QuickTime du 13 décembre 2007 :	-	other
Alerte CERTA-2007-ALE-001 du 04 janvier 2007 :	-	other
RFC 2326, "Real Time Streaming Protocol" :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "La version 7.5 d\u0027Apple iTunes ainsi que les versions ant\u00e9rieures.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    },
    {
      "description": "La version 7.3 d\u0027Apple QuickTime ainsi que les versions ant\u00e9rieures ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "closed_at": "2007-12-14",
  "content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 identifi\u00e9e dans le logiciel multim\u00e9dia Apple\nQuickTime. Ce dernier ne manipulerait pas correctement un champ dans\nl\u0027en-t\u00eate des r\u00e9ponses retourn\u00e9es par le serveur de flux RTSP.\n\nRTSP (pour Real Time Streaming Protocol) est un protocole permettant\nd\u0027\u00e9tablir et de contr\u00f4ler des flux synchronis\u00e9s de m\u00e9dias continus\n(streaming), qu\u0027ils soient audio ou vid\u00e9o. Il est conceptuellement tr\u00e8s\nproche de HTTP : il est \u00e0 \u00e9tat et utilise la notion de session.\n\nLorsque le client envoie une requ\u00eate au serveur, ce dernier retourne une\nr\u00e9ponse, avec un champ Content-Type.\n\nApple QuickTime n\u0027interpr\u00e9terait pas correctement la valeur de ce champ.\nCette vuln\u00e9rabilit\u00e9 peut ainsi \u00eatre exploit\u00e9e par une personne distante,\nqui aura pris soin de mettre en place un serveur de flux r\u00e9pondant par\ncette vuln\u00e9rabilit\u00e9. L\u0027utilisateur amen\u00e9 \u00e0 r\u00e9cup\u00e9rer le flux multim\u00e9dia,\npar un lien par exemple provoquera le dysfonctionnement, voire\nl\u0027ex\u00e9cution de code arbitraire sur son syt\u00e8me vuln\u00e9rable.\n\n## Contournement provisoire\n\n## 5.1 De mani\u00e8re g\u00e9n\u00e9rale\n\nIl est pr\u00e9f\u00e9rable, dans l\u0027attente d\u0027un correctif, d\u0027utiliser un lecteur\nmultim\u00e9dia alternatif.\n\nL\u0027administrateur du r\u00e9seau peut \u00e9galement v\u00e9rifier que les flux sortants\nTCP/UDP vers le port 554 sont bloqu\u00e9s. Ces ports sont ceux par d\u00e9faut\nattribu\u00e9s au protocole Real Time Streaming Protocol, mais peuvent \u00eatre\nchang\u00e9s et remplac\u00e9s par n\u0027importe quel autre port convenu c\u00f4t\u00e9 serveur\net c\u00f4t\u00e9 client. Cette mesure n\u0027est donc pas suffisante.\n\nLes navigateurs offrent \u00e9galement la possibilit\u00e9 de d\u00e9sactiver les\nmodules ou plugins.\n\nLes recommandations standards s\u0027appliquent toujours : l\u0027interpr\u00e9tation\nde codes dynamiques comme Javascript doit \u00eatre d\u00e9sactiv\u00e9e par d\u00e9faut.\n\n## 5.2 Sous Microsoft Windows :\n\n-   D\u00e9sactiver la prise en charge des liens rtsp:// dans Quicktime en\n    d\u00e9cochant la case  \n    Pr\u00e9f\u00e9rences de Quicktime -\\\u003e Types de fichiers -\\\u003e Diffusion -\\\u003e\n    Descripteur de flux RTSP ;\n-   D\u00e9sactiver l\u0027association faite entre le type de fichier et\n    QuickTime, en supprimant les cl\u00e9s de registre de la forme  \n    HKEY_CLASSES_ROOT/TT\\\u003e\n\n## 5.3 Sous Apple MacOS X :\n\n-   D\u00e9sactiver la prise en charge des liens rtsp:// dans QuickTime en\n    d\u00e9cochant la case  \n    Pr\u00e9f\u00e9rences de Quicktime -\\\u003e Avanc\u00e9 -\\\u003e R\u00e9glages MIME -\\\u003e Diffusion\n    -\\\u003e Descripteur de flux RTSP ;\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2007-0015",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0015"
    },
    {
      "name": "CVE-2007-6166",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-6166"
    }
  ],
  "links": [
    {
      "title": "D\u00e9sinstaller des modules ou plugins sous Mozilla :",
      "url": "http://plugindoc.mozdev.org/faqs/uninstall.html"
    },
    {
      "title": "Site de t\u00e9l\u00e9chargement d\u0027Apple QuickTime :",
      "url": "http://www.apple.com/quicktime/"
    },
    {
      "title": "Note de vuln\u00e9rabilit\u00e9 de l\u0027US-CERT VU#659761 du 24 novembre    2007 :",
      "url": "http://www.kb.cert.org/vuls/id/659761"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 QuickTime du 13 d\u00e9cembre 2007 :",
      "url": "http://docs.info.apple.com/article.html?artnum=307176"
    },
    {
      "title": "Alerte CERTA-2007-ALE-001 du 04 janvier 2007 :",
      "url": "http://www.certa.ssi.gouv.fr/site/CERTA-2007-ALE-001/"
    },
    {
      "title": "RFC 2326, \"Real Time Streaming Protocol\" :",
      "url": "http://tools.ietf.org/html/rfc2326"
    }
  ],
  "reference": "CERTA-2007-ALE-017",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2007-11-27T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 QuickTime.",
      "revision_date": "2007-12-14T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 identifi\u00e9e dans le logiciel multim\u00e9dia Apple\nQuickTime. Ce dernier ne manipule pas correctement un champ dans\nl\u0027en-t\u00eate des r\u00e9ponses retourn\u00e9es par le serveur de flux RTSP. Une\npersonne malveillante pourrait inciter un utilisateur \u00e0 se rendre sur un\ntel serveur, ce qui pourrait alors perturber son syst\u00e8me ou permettre \u00e0\nl\u0027attaquant d\u0027ex\u00e9cuter des commandes arbitraires.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans la gestion RTSP d\u0027Apple QuickTime",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 de l\u0027US-CERT VU#659761 du 24 novembre 2007",
      "url": null
    }
  ]
}

CERTA-2007-ALE-017

Vulnerability from certfr_alerte - Published: - Updated:

Description

Lorsque le client envoie une requête au serveur, ce dernier retourne une réponse, avec un champ Content-Type.

Contournement provisoire

5.1 De manière générale

Il est préférable, dans l'attente d'un correctif, d'utiliser un lecteur multimédia alternatif.

Les navigateurs offrent également la possibilité de désactiver les modules ou plugins.

Les recommandations standards s'appliquent toujours : l'interprétation de codes dynamiques comme Javascript doit être désactivée par défaut.

5.2 Sous Microsoft Windows :

Désactiver la prise en charge des liens rtsp:// dans Quicktime en décochant la case
Préférences de Quicktime -> Types de fichiers -> Diffusion -> Descripteur de flux RTSP ;
Désactiver l'association faite entre le type de fichier et QuickTime, en supprimant les clés de registre de la forme
HKEY_CLASSES_ROOT/TT>

5.3 Sous Apple MacOS X :

Désactiver la prise en charge des liens rtsp:// dans QuickTime en décochant la case
Préférences de Quicktime -> Avancé -> Réglages MIME -> Diffusion -> Descripteur de flux RTSP ;

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Apple	N/A	La version 7.5 d'Apple iTunes ainsi que les versions antérieures.
	Apple	N/A	La version 7.3 d'Apple QuickTime ainsi que les versions antérieures ;

References

Title

Publication Time

Tags

Bulletin de sécurité de l'US-CERT VU#659761 du 24 novembre 2007	None	vendor-advisory
Désinstaller des modules ou plugins sous Mozilla :	-	other
Site de téléchargement d'Apple QuickTime :	-	other
Note de vulnérabilité de l'US-CERT VU#659761 du 24 novembre 2007 :	-	other
Bulletin de sécurité QuickTime du 13 décembre 2007 :	-	other
Alerte CERTA-2007-ALE-001 du 04 janvier 2007 :	-	other
RFC 2326, "Real Time Streaming Protocol" :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "La version 7.5 d\u0027Apple iTunes ainsi que les versions ant\u00e9rieures.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    },
    {
      "description": "La version 7.3 d\u0027Apple QuickTime ainsi que les versions ant\u00e9rieures ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Apple",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "closed_at": "2007-12-14",
  "content": "## Description\n\nUne vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 identifi\u00e9e dans le logiciel multim\u00e9dia Apple\nQuickTime. Ce dernier ne manipulerait pas correctement un champ dans\nl\u0027en-t\u00eate des r\u00e9ponses retourn\u00e9es par le serveur de flux RTSP.\n\nRTSP (pour Real Time Streaming Protocol) est un protocole permettant\nd\u0027\u00e9tablir et de contr\u00f4ler des flux synchronis\u00e9s de m\u00e9dias continus\n(streaming), qu\u0027ils soient audio ou vid\u00e9o. Il est conceptuellement tr\u00e8s\nproche de HTTP : il est \u00e0 \u00e9tat et utilise la notion de session.\n\nLorsque le client envoie une requ\u00eate au serveur, ce dernier retourne une\nr\u00e9ponse, avec un champ Content-Type.\n\nApple QuickTime n\u0027interpr\u00e9terait pas correctement la valeur de ce champ.\nCette vuln\u00e9rabilit\u00e9 peut ainsi \u00eatre exploit\u00e9e par une personne distante,\nqui aura pris soin de mettre en place un serveur de flux r\u00e9pondant par\ncette vuln\u00e9rabilit\u00e9. L\u0027utilisateur amen\u00e9 \u00e0 r\u00e9cup\u00e9rer le flux multim\u00e9dia,\npar un lien par exemple provoquera le dysfonctionnement, voire\nl\u0027ex\u00e9cution de code arbitraire sur son syt\u00e8me vuln\u00e9rable.\n\n## Contournement provisoire\n\n## 5.1 De mani\u00e8re g\u00e9n\u00e9rale\n\nIl est pr\u00e9f\u00e9rable, dans l\u0027attente d\u0027un correctif, d\u0027utiliser un lecteur\nmultim\u00e9dia alternatif.\n\nL\u0027administrateur du r\u00e9seau peut \u00e9galement v\u00e9rifier que les flux sortants\nTCP/UDP vers le port 554 sont bloqu\u00e9s. Ces ports sont ceux par d\u00e9faut\nattribu\u00e9s au protocole Real Time Streaming Protocol, mais peuvent \u00eatre\nchang\u00e9s et remplac\u00e9s par n\u0027importe quel autre port convenu c\u00f4t\u00e9 serveur\net c\u00f4t\u00e9 client. Cette mesure n\u0027est donc pas suffisante.\n\nLes navigateurs offrent \u00e9galement la possibilit\u00e9 de d\u00e9sactiver les\nmodules ou plugins.\n\nLes recommandations standards s\u0027appliquent toujours : l\u0027interpr\u00e9tation\nde codes dynamiques comme Javascript doit \u00eatre d\u00e9sactiv\u00e9e par d\u00e9faut.\n\n## 5.2 Sous Microsoft Windows :\n\n-   D\u00e9sactiver la prise en charge des liens rtsp:// dans Quicktime en\n    d\u00e9cochant la case  \n    Pr\u00e9f\u00e9rences de Quicktime -\\\u003e Types de fichiers -\\\u003e Diffusion -\\\u003e\n    Descripteur de flux RTSP ;\n-   D\u00e9sactiver l\u0027association faite entre le type de fichier et\n    QuickTime, en supprimant les cl\u00e9s de registre de la forme  \n    HKEY_CLASSES_ROOT/TT\\\u003e\n\n## 5.3 Sous Apple MacOS X :\n\n-   D\u00e9sactiver la prise en charge des liens rtsp:// dans QuickTime en\n    d\u00e9cochant la case  \n    Pr\u00e9f\u00e9rences de Quicktime -\\\u003e Avanc\u00e9 -\\\u003e R\u00e9glages MIME -\\\u003e Diffusion\n    -\\\u003e Descripteur de flux RTSP ;\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2007-0015",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0015"
    },
    {
      "name": "CVE-2007-6166",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-6166"
    }
  ],
  "links": [
    {
      "title": "D\u00e9sinstaller des modules ou plugins sous Mozilla :",
      "url": "http://plugindoc.mozdev.org/faqs/uninstall.html"
    },
    {
      "title": "Site de t\u00e9l\u00e9chargement d\u0027Apple QuickTime :",
      "url": "http://www.apple.com/quicktime/"
    },
    {
      "title": "Note de vuln\u00e9rabilit\u00e9 de l\u0027US-CERT VU#659761 du 24 novembre    2007 :",
      "url": "http://www.kb.cert.org/vuls/id/659761"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 QuickTime du 13 d\u00e9cembre 2007 :",
      "url": "http://docs.info.apple.com/article.html?artnum=307176"
    },
    {
      "title": "Alerte CERTA-2007-ALE-001 du 04 janvier 2007 :",
      "url": "http://www.certa.ssi.gouv.fr/site/CERTA-2007-ALE-001/"
    },
    {
      "title": "RFC 2326, \"Real Time Streaming Protocol\" :",
      "url": "http://tools.ietf.org/html/rfc2326"
    }
  ],
  "reference": "CERTA-2007-ALE-017",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2007-11-27T00:00:00.000000"
    },
    {
      "description": "ajout de la r\u00e9f\u00e9rence au bulletin de s\u00e9curit\u00e9 QuickTime.",
      "revision_date": "2007-12-14T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 a \u00e9t\u00e9 identifi\u00e9e dans le logiciel multim\u00e9dia Apple\nQuickTime. Ce dernier ne manipule pas correctement un champ dans\nl\u0027en-t\u00eate des r\u00e9ponses retourn\u00e9es par le serveur de flux RTSP. Une\npersonne malveillante pourrait inciter un utilisateur \u00e0 se rendre sur un\ntel serveur, ce qui pourrait alors perturber son syst\u00e8me ou permettre \u00e0\nl\u0027attaquant d\u0027ex\u00e9cuter des commandes arbitraires.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans la gestion RTSP d\u0027Apple QuickTime",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 de l\u0027US-CERT VU#659761 du 24 novembre 2007",
      "url": null
    }
  ]
}

GHSA-XPC5-5QWG-24VR

Vulnerability from github – Published: 2022-05-01 17:41 – Updated: 2025-04-09 03:35

Details

Buffer overflow in Apple QuickTime 7.1.3 allows remote attackers to execute arbitrary code via a long rtsp:// URI.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2007-0015"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2007-01-01T23:28:00Z",
    "severity": "MODERATE"
  },
  "details": "Buffer overflow in Apple QuickTime 7.1.3 allows remote attackers to execute arbitrary code via a long rtsp:// URI.",
  "id": "GHSA-xpc5-5qwg-24vr",
  "modified": "2025-04-09T03:35:42Z",
  "published": "2022-05-01T17:41:20Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-0015"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31203"
    },
    {
      "type": "WEB",
      "url": "https://www.exploit-db.com/exploits/3064"
    },
    {
      "type": "WEB",
      "url": "http://docs.info.apple.com/article.html?artnum=304989"
    },
    {
      "type": "WEB",
      "url": "http://isc.sans.org/diary.html?storyid=2094"
    },
    {
      "type": "WEB",
      "url": "http://landonf.bikemonkey.org/code/macosx/MOAB_Day_1.20070102060815.15950.zadder.local.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.apple.com/archives/Security-announce/2007/Jan/msg00000.html"
    },
    {
      "type": "WEB",
      "url": "http://projects.info-pull.com/moab/MOAB-01-01-2007.html"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/23540"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/blog/7"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1017461"
    },
    {
      "type": "WEB",
      "url": "http://www.kb.cert.org/vuls/id/442497"
    },
    {
      "type": "WEB",
      "url": "http://www.osvdb.org/31023"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/21829"
    },
    {
      "type": "WEB",
      "url": "http://www.us-cert.gov/cas/techalerts/TA07-005A.html"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2007/0001"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

FKIE_CVE-2007-0015

Vulnerability from fkie_nvd - Published: 2007-01-01 23:28 - Updated: 2025-04-09 00:30

Severity ?

Summary

Buffer overflow in Apple QuickTime 7.1.3 allows remote attackers to execute arbitrary code via a long rtsp:// URI.

References

URL	Tags
cve@mitre.org	http://docs.info.apple.com/article.html?artnum=304989
cve@mitre.org	http://isc.sans.org/diary.html?storyid=2094
cve@mitre.org	http://landonf.bikemonkey.org/code/macosx/MOAB_Day_1.20070102060815.15950.zadder.local.html
cve@mitre.org	http://lists.apple.com/archives/Security-announce/2007/Jan/msg00000.html
cve@mitre.org	http://projects.info-pull.com/moab/MOAB-01-01-2007.html	Exploit
cve@mitre.org	http://secunia.com/advisories/23540	Patch, Vendor Advisory
cve@mitre.org	http://secunia.com/blog/7/
cve@mitre.org	http://securitytracker.com/id?1017461	Exploit
cve@mitre.org	http://www.kb.cert.org/vuls/id/442497	Patch, US Government Resource
cve@mitre.org	http://www.osvdb.org/31023
cve@mitre.org	http://www.securityfocus.com/bid/21829	Exploit
cve@mitre.org	http://www.us-cert.gov/cas/techalerts/TA07-005A.html	US Government Resource
cve@mitre.org	http://www.vupen.com/english/advisories/2007/0001
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/31203
cve@mitre.org	https://www.exploit-db.com/exploits/3064
af854a3a-2127-422b-91ae-364da2661108	http://docs.info.apple.com/article.html?artnum=304989
af854a3a-2127-422b-91ae-364da2661108	http://isc.sans.org/diary.html?storyid=2094
af854a3a-2127-422b-91ae-364da2661108	http://landonf.bikemonkey.org/code/macosx/MOAB_Day_1.20070102060815.15950.zadder.local.html
af854a3a-2127-422b-91ae-364da2661108	http://lists.apple.com/archives/Security-announce/2007/Jan/msg00000.html
af854a3a-2127-422b-91ae-364da2661108	http://projects.info-pull.com/moab/MOAB-01-01-2007.html	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/23540	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/blog/7/
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1017461	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/442497	Patch, US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.osvdb.org/31023
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/21829	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://www.us-cert.gov/cas/techalerts/TA07-005A.html	US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2007/0001
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/31203
af854a3a-2127-422b-91ae-364da2661108	https://www.exploit-db.com/exploits/3064

Impacted products

	Vendor	Product	Version
	apple	quicktime	7.1.3

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:apple:quicktime:7.1.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "952A8015-B18B-481C-AC17-60F0D7EEE085",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Buffer overflow in Apple QuickTime 7.1.3 allows remote attackers to execute arbitrary code via a long rtsp:// URI."
    },
    {
      "lang": "es",
      "value": "Un desbordamiento de b\u00fafer en Apple QuickTime versi\u00f3n 7.1.3, permite a atacantes remotos ejecutar c\u00f3digo arbitrario por medio de un URI rtsp:// largo."
    }
  ],
  "id": "CVE-2007-0015",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 6.8,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": true,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2007-01-01T23:28:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://docs.info.apple.com/article.html?artnum=304989"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://isc.sans.org/diary.html?storyid=2094"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://landonf.bikemonkey.org/code/macosx/MOAB_Day_1.20070102060815.15950.zadder.local.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://lists.apple.com/archives/Security-announce/2007/Jan/msg00000.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "http://projects.info-pull.com/moab/MOAB-01-01-2007.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/23540"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/blog/7/"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "http://securitytracker.com/id?1017461"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/442497"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.osvdb.org/31023"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.securityfocus.com/bid/21829"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.us-cert.gov/cas/techalerts/TA07-005A.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2007/0001"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31203"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://www.exploit-db.com/exploits/3064"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://docs.info.apple.com/article.html?artnum=304989"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://isc.sans.org/diary.html?storyid=2094"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://landonf.bikemonkey.org/code/macosx/MOAB_Day_1.20070102060815.15950.zadder.local.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.apple.com/archives/Security-announce/2007/Jan/msg00000.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://projects.info-pull.com/moab/MOAB-01-01-2007.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/23540"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/blog/7/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://securitytracker.com/id?1017461"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/442497"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.osvdb.org/31023"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.securityfocus.com/bid/21829"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.us-cert.gov/cas/techalerts/TA07-005A.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2007/0001"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31203"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.exploit-db.com/exploits/3064"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

VAR-200701-0596

Vulnerability from variot - Updated: 2023-12-18 12:59

Buffer overflow in Apple QuickTime 7.1.3 allows remote attackers to execute arbitrary code via a long rtsp:// URI. Apple QuickTime is prone to a remote buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied input prior to copying it to an insufficiently sized stack-based memory buffer. Attackers exploit this issue by coercing targeted users to access malicious HTML or QTL files or by executing malicious JavaScript code. QuickTime 7.1.3 is vulnerable to this issue; other versions may also be affected. Apple QuickTime is a popular multimedia player that supports a wide variety of media formats. A remote attacker can construct something like \"rtsp://[any character]:[ > 256 bytes] The URL string of \" lures the user to click, and the overflow occurs when the system calls QuickTime processing, and any command of the attacker is executed.

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

                    National Cyber Alert System

             Technical Cyber Security Alert TA07-005A

Apple QuickTime RTSP Buffer Overflow

Original release date: January 05, 2007 Last revised: -- Source: US-CERT

Systems Affected

Apple QuickTime on systems running

 * Apple Mac OS X

 * Microsoft Windows

Note that Apple iTunes and other software using the vulnerable QuickTime components are also affected.

I. Public exploit code is available that demonstrates how opening a .QTL file triggers the buffer overflow. However, we have confirmed that other attack vectors for the vulnerability also exist.

Possible attack vectors include

 * a web page that uses the QuickTime plug-in or ActiveX control

 * a web page that uses the rtsp:// protocol

 * a file that is associated with the QuickTime Player

US-CERT is tracking this issue as VU#442497. This reference number corresponds to CVE-2007-0015.

Note that this vulnerability affects QuickTime on Microsoft Windows and Apple Mac platforms. Although web pages can be used as attack vectors, this vulnerability is not dependent on the specific web browser that is used.

II.

III. Solution

We are currently unaware of a solution to this problem. Until a solution becomes available, the workarounds provided in US-CERT Vulnerability Note VU#442497 are strongly encouraged.

http://www.kb.cert.org/vuls/id/442497

IV. References

 * US-CERT Vulnerability Note VU#442497 -
   <http://www.kb.cert.org/vuls/id/442497>

 * Securing Your Web Browser -
   <http://www.us-cert.gov/reading_room/securing_browser/>

 * CVE-2007-0015 -
   <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0015>

The most recent version of this document can be found at:

 <http://www.us-cert.gov/cas/techalerts/TA07-005A.html>

Feedback can be directed to US-CERT Technical Staff. Please send email to cert@cert.org with "TA07-005A Feedback VU#442497" in the subject.

For instructions on subscribing to or unsubscribing from this mailing list, visit http://www.us-cert.gov/cas/signup.html.

Produced 2007 by US-CERT, a government organization.

 <http://www.us-cert.gov/legal.html>

Revision History

January 05, 2007: Initial release

-----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux)

iQEVAwUBRZ7D9OxOF3G+ig+rAQLG+Af/e+VhtMJEDuzVbT47HRdINgIRiOceCx4u DZFbMaUvYu4hjGu9f+T6AaGWR9FQj1ZzWDYf/JHY67NCSkwJdFY4Th1vR09BXJGy lmAzlj7+l3U4UeR+rEud0ajP8qCO7vwRGP4rPUVkcqgaBXqdyfgQbNHtwIpw6w/z eFYyUp/2EA1vHeTGdPNAkQTupuC95kA0QsiONCVv9xTqg7xnlcXBTwKz+T/DcWig LDLgPMupim8+ruhkzCCOVveIFQPBdXN5Aem/Fvpmhi2V5HRBc65vKaDoLzBpt4BZ Wdbeud6ljPjm0JLPvy84Gn7qFcjCu3WP3Nayd7rhbClFZSWyGilM+Q== =RrHt -----END PGP SIGNATURE----- .

Secunia is proud to announce the availability of the Secunia Software Inspector.

The Secunia Software Inspector is a free service that detects insecure versions of software that you may have installed in your system. When insecure versions are detected, the Secunia Software Inspector also provides thorough guidelines for updating the software to the latest secure version from the vendor. This can be exploited to cause a stack-based buffer overflow via a specially crafted QTL file with an overly long (more than 256 bytes) "src" parameter (e.g. "rtsp://[any character]:[>256 bytes]").

SOLUTION: Do not open untrusted QTL files.

PROVIDED AND/OR DISCOVERED BY: LMH

ORIGINAL ADVISORY: http://projects.info-pull.com/moab/MOAB-01-01-2007.html

About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

Subscribe: http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.

Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-200701-0596",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "quicktime",
        "scope": "eq",
        "trust": 2.4,
        "vendor": "apple",
        "version": "7.1.3"
      },
      {
        "model": null,
        "scope": null,
        "trust": 0.8,
        "vendor": "apple computer",
        "version": null
      },
      {
        "model": "quicktime player",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "apple",
        "version": "7.1.3"
      },
      {
        "model": "quicktime player",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "apple",
        "version": "7.0.4"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#442497"
      },
      {
        "db": "BID",
        "id": "21829"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-000005"
      },
      {
        "db": "NVD",
        "id": "CVE-2007-0015"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200701-001"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:apple:quicktime:7.1.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2007-0015"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "LMH lmh@info-pull.com",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200701-001"
      }
    ],
    "trust": 0.6
  },
  "cve": "CVE-2007-0015",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 8.6,
            "impactScore": 6.4,
            "integrityImpact": "PARTIAL",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": true,
            "obtainUserPrivilege": false,
            "severity": "MEDIUM",
            "trust": 1.0,
            "userInteractionRequired": true,
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Medium",
            "accessVector": "Network",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "Partial",
            "baseScore": 6.8,
            "confidentialityImpact": "Partial",
            "exploitabilityScore": null,
            "id": "CVE-2007-0015",
            "impactScore": null,
            "integrityImpact": "Partial",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "Medium",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "PARTIAL",
            "baseScore": 6.8,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 8.6,
            "id": "VHN-23377",
            "impactScore": 6.4,
            "integrityImpact": "PARTIAL",
            "severity": "MEDIUM",
            "trust": 0.1,
            "vectorString": "AV:N/AC:M/AU:N/C:P/I:P/A:P",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2007-0015",
            "trust": 1.8,
            "value": "MEDIUM"
          },
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#442497",
            "trust": 0.8,
            "value": "27.00"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-200701-001",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "VULHUB",
            "id": "VHN-23377",
            "trust": 0.1,
            "value": "MEDIUM"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#442497"
      },
      {
        "db": "VULHUB",
        "id": "VHN-23377"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-000005"
      },
      {
        "db": "NVD",
        "id": "CVE-2007-0015"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200701-001"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Buffer overflow in Apple QuickTime 7.1.3 allows remote attackers to execute arbitrary code via a long rtsp:// URI. Apple QuickTime is prone to a remote buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied input prior to copying it to an insufficiently sized stack-based memory buffer. \nAttackers exploit this issue by coercing targeted users to access malicious HTML or QTL files or by executing malicious JavaScript code. \nQuickTime 7.1.3 is vulnerable to this issue; other versions may also be affected. Apple QuickTime is a popular multimedia player that supports a wide variety of media formats. A remote attacker can construct something like \\\"rtsp://[any character]:[ \u003e 256 bytes] The URL string of \\\" lures the user to click, and the overflow occurs when the system calls QuickTime processing, and any command of the attacker is executed. \n\n-----BEGIN PGP SIGNED MESSAGE-----\nHash: SHA1\n\n\n                        National Cyber Alert System\n\n                 Technical Cyber Security Alert TA07-005A\n\n\nApple QuickTime RTSP Buffer Overflow\n\n   Original release date: January 05, 2007\n   Last revised: --\n   Source: US-CERT\n\n\nSystems Affected\n\n   Apple QuickTime on systems running\n\n     * Apple Mac OS X\n\n     * Microsoft Windows\n\n   Note that Apple iTunes and other software using the vulnerable\n   QuickTime components are also affected. \n\n\nI. Public\n   exploit code is available that demonstrates how opening a .QTL file\n   triggers the buffer overflow. However, we have confirmed that other\n   attack vectors for the vulnerability also exist. \n\n   Possible attack vectors include\n\n     * a web page that uses the QuickTime plug-in or ActiveX control\n\n     * a web page that uses the rtsp:// protocol\n\n     * a file that is associated with the QuickTime Player\n\n   US-CERT is tracking this issue as VU#442497. This reference number\n   corresponds to CVE-2007-0015. \n\n   Note that this vulnerability affects QuickTime on Microsoft Windows\n   and Apple Mac platforms. Although web pages can be used as attack\n   vectors, this vulnerability is not dependent on the specific web\n   browser that is used. \n\n\nII. \n\n\nIII. Solution\n\n   We are currently unaware of a solution to this problem. Until a\n   solution becomes available, the workarounds provided in US-CERT\n   Vulnerability Note VU#442497 are strongly encouraged. \n\n   \u003chttp://www.kb.cert.org/vuls/id/442497\u003e\n\n\nIV. References\n\n     * US-CERT Vulnerability Note VU#442497 -\n       \u003chttp://www.kb.cert.org/vuls/id/442497\u003e\n\n     * Securing Your Web Browser -\n       \u003chttp://www.us-cert.gov/reading_room/securing_browser/\u003e\n\n     * CVE-2007-0015 -\n       \u003chttp://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0015\u003e\n\n\n ____________________________________________________________________\n\n   The most recent version of this document can be found at:\n\n     \u003chttp://www.us-cert.gov/cas/techalerts/TA07-005A.html\u003e\n ____________________________________________________________________\n\n   Feedback can be directed to US-CERT Technical Staff. Please send\n   email to \u003ccert@cert.org\u003e with \"TA07-005A Feedback VU#442497\" in the\n   subject. \n ____________________________________________________________________\n\n   For instructions on subscribing to or unsubscribing from this\n   mailing list, visit \u003chttp://www.us-cert.gov/cas/signup.html\u003e. \n ____________________________________________________________________\n\n   Produced 2007 by US-CERT, a government organization. \n\n   Terms of use:\n\n     \u003chttp://www.us-cert.gov/legal.html\u003e\n ____________________________________________________________________\n\n\nRevision History\n\n   January 05, 2007: Initial release\n\n\n\n\n\n-----BEGIN PGP SIGNATURE-----\nVersion: GnuPG v1.2.1 (GNU/Linux)\n\niQEVAwUBRZ7D9OxOF3G+ig+rAQLG+Af/e+VhtMJEDuzVbT47HRdINgIRiOceCx4u\nDZFbMaUvYu4hjGu9f+T6AaGWR9FQj1ZzWDYf/JHY67NCSkwJdFY4Th1vR09BXJGy\nlmAzlj7+l3U4UeR+rEud0ajP8qCO7vwRGP4rPUVkcqgaBXqdyfgQbNHtwIpw6w/z\neFYyUp/2EA1vHeTGdPNAkQTupuC95kA0QsiONCVv9xTqg7xnlcXBTwKz+T/DcWig\nLDLgPMupim8+ruhkzCCOVveIFQPBdXN5Aem/Fvpmhi2V5HRBc65vKaDoLzBpt4BZ\nWdbeud6ljPjm0JLPvy84Gn7qFcjCu3WP3Nayd7rhbClFZSWyGilM+Q==\n=RrHt\n-----END PGP SIGNATURE-----\n. \n\n----------------------------------------------------------------------\n\nSecunia is proud to announce the availability of the Secunia Software\nInspector. \n\nThe Secunia Software Inspector is a free service that detects insecure\nversions of software that you may have installed in your system. When\ninsecure versions are detected, the Secunia Software Inspector also\nprovides thorough guidelines for updating the software to the latest\nsecure version from the vendor. This can be exploited to cause a stack-based buffer\noverflow via a specially crafted QTL file with an overly long (more\nthan 256 bytes) \"src\" parameter (e.g. \"rtsp://[any character]:[\u003e256\nbytes]\"). \n\nSOLUTION:\nDo not open untrusted QTL files. \n\nPROVIDED AND/OR DISCOVERED BY:\nLMH\n\nORIGINAL ADVISORY:\nhttp://projects.info-pull.com/moab/MOAB-01-01-2007.html\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2007-0015"
      },
      {
        "db": "CERT/CC",
        "id": "VU#442497"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-000005"
      },
      {
        "db": "BID",
        "id": "21829"
      },
      {
        "db": "VULHUB",
        "id": "VHN-23377"
      },
      {
        "db": "PACKETSTORM",
        "id": "53507"
      },
      {
        "db": "PACKETSTORM",
        "id": "53358"
      }
    ],
    "trust": 2.88
  },
  "exploit_availability": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "reference": "https://www.scap.org.cn/vuln/vhn-23377",
        "trust": 0.1,
        "type": "unknown"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-23377"
      }
    ]
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "BID",
        "id": "21829",
        "trust": 3.6
      },
      {
        "db": "SECUNIA",
        "id": "23540",
        "trust": 3.4
      },
      {
        "db": "CERT/CC",
        "id": "VU#442497",
        "trust": 3.4
      },
      {
        "db": "NVD",
        "id": "CVE-2007-0015",
        "trust": 2.9
      },
      {
        "db": "USCERT",
        "id": "TA07-005A",
        "trust": 2.6
      },
      {
        "db": "SECTRACK",
        "id": "1017461",
        "trust": 2.5
      },
      {
        "db": "OSVDB",
        "id": "31023",
        "trust": 2.5
      },
      {
        "db": "EXPLOIT-DB",
        "id": "3064",
        "trust": 1.7
      },
      {
        "db": "VUPEN",
        "id": "ADV-2007-0001",
        "trust": 1.7
      },
      {
        "db": "XF",
        "id": "31203",
        "trust": 1.4
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-000005",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200701-001",
        "trust": 0.7
      },
      {
        "db": "MILW0RM",
        "id": "3064",
        "trust": 0.6
      },
      {
        "db": "CERT/CC",
        "id": "TA07-005A",
        "trust": 0.6
      },
      {
        "db": "APPLE",
        "id": "APPLE-SA-2007-01-23",
        "trust": 0.6
      },
      {
        "db": "PACKETSTORM",
        "id": "53507",
        "trust": 0.2
      },
      {
        "db": "PACKETSTORM",
        "id": "53412",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "82966",
        "trust": 0.1
      },
      {
        "db": "EXPLOIT-DB",
        "id": "3072",
        "trust": 0.1
      },
      {
        "db": "EXPLOIT-DB",
        "id": "16527",
        "trust": 0.1
      },
      {
        "db": "SEEBUG",
        "id": "SSVID-71041",
        "trust": 0.1
      },
      {
        "db": "VULHUB",
        "id": "VHN-23377",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "53358",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#442497"
      },
      {
        "db": "VULHUB",
        "id": "VHN-23377"
      },
      {
        "db": "BID",
        "id": "21829"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-000005"
      },
      {
        "db": "PACKETSTORM",
        "id": "53507"
      },
      {
        "db": "PACKETSTORM",
        "id": "53358"
      },
      {
        "db": "NVD",
        "id": "CVE-2007-0015"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200701-001"
      }
    ]
  },
  "id": "VAR-200701-0596",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-23377"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2023-12-18T12:59:09.108000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "Security Update 2007-001 (Panther)",
        "trust": 0.8,
        "url": "http://www.apple.com/support/downloads/securityupdate2007001panther.html"
      },
      {
        "title": "Security Update 2007-001 (Universal)",
        "trust": 0.8,
        "url": "http://www.apple.com/support/downloads/securityupdate2007001universal.html"
      },
      {
        "title": "Security Update 2007-001",
        "trust": 0.8,
        "url": "http://docs.info.apple.com/article.html?artnum=304989-en"
      },
      {
        "title": "Security Update 2007-001",
        "trust": 0.8,
        "url": "http://docs.info.apple.com/article.html?artnum=304989-ja"
      },
      {
        "title": "\u30a2\u30c3\u30d7\u30eb - QuickTime",
        "trust": 0.8,
        "url": "http://www.apple.com/jp/quicktime/"
      },
      {
        "title": "Security Update 2007-001 (Universal)",
        "trust": 0.8,
        "url": "http://www.apple.com/jp/ftp-info/reference/securityupdate2007001universal.html"
      },
      {
        "title": "Security Update 2007-001 (Panther)",
        "trust": 0.8,
        "url": "http://www.apple.com/jp/ftp-info/reference/securityupdate2007001panther.html"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-000005"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "NVD-CWE-Other",
        "trust": 1.0
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2007-0015"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.8,
        "url": "http://docs.info.apple.com/article.html?artnum=304989"
      },
      {
        "trust": 2.6,
        "url": "http://projects.info-pull.com/moab/moab-01-01-2007.html"
      },
      {
        "trust": 2.5,
        "url": "http://lists.apple.com/archives/security-announce/2007/jan/msg00000.html"
      },
      {
        "trust": 2.5,
        "url": "http://secunia.com/blog/7/"
      },
      {
        "trust": 2.5,
        "url": "http://www.securityfocus.com/bid/21829"
      },
      {
        "trust": 2.5,
        "url": "http://www.us-cert.gov/cas/techalerts/ta07-005a.html"
      },
      {
        "trust": 2.5,
        "url": "http://www.kb.cert.org/vuls/id/442497"
      },
      {
        "trust": 2.5,
        "url": "http://www.osvdb.org/31023"
      },
      {
        "trust": 2.5,
        "url": "http://securitytracker.com/id?1017461"
      },
      {
        "trust": 2.5,
        "url": "http://secunia.com/advisories/23540"
      },
      {
        "trust": 1.7,
        "url": "http://isc.sans.org/diary.html?storyid=2094"
      },
      {
        "trust": 1.7,
        "url": "http://landonf.bikemonkey.org/code/macosx/moab_day_1.20070102060815.15950.zadder.local.html"
      },
      {
        "trust": 1.6,
        "url": "http://search.info.apple.com/?search=go\u0026q=2007-001"
      },
      {
        "trust": 1.4,
        "url": "http://www.frsirt.com/english/advisories/2007/0001"
      },
      {
        "trust": 1.4,
        "url": "http://xforce.iss.net/xforce/xfdb/31203"
      },
      {
        "trust": 1.1,
        "url": "https://www.exploit-db.com/exploits/3064"
      },
      {
        "trust": 1.1,
        "url": "http://www.vupen.com/english/advisories/2007/0001"
      },
      {
        "trust": 1.1,
        "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31203"
      },
      {
        "trust": 0.9,
        "url": "http://secunia.com/advisories/23540/"
      },
      {
        "trust": 0.8,
        "url": "http://www.securityfocus.com/bid/21829 "
      },
      {
        "trust": 0.8,
        "url": "http://plugindoc.mozdev.org/faqs/uninstall.html"
      },
      {
        "trust": 0.8,
        "url": "http://support.microsoft.com/kb/240797"
      },
      {
        "trust": 0.8,
        "url": "http://docs.info.apple.com/article.html?artnum=106704"
      },
      {
        "trust": 0.8,
        "url": "http://docs.info.apple.com/article.html?artnum=304264"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2007-0015"
      },
      {
        "trust": 0.8,
        "url": "http://www.jpcert.or.jp/at/2007/at070016.txt"
      },
      {
        "trust": 0.8,
        "url": "http://jvn.jp/cert/jvnta07-005a/index.html"
      },
      {
        "trust": 0.8,
        "url": "http://jvn.jp/cert/jvnvu%23442497/index.html"
      },
      {
        "trust": 0.8,
        "url": "http://jvn.jp/tr/trta07-005a/index.html"
      },
      {
        "trust": 0.8,
        "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2007-0015"
      },
      {
        "trust": 0.6,
        "url": "http://www.milw0rm.com/exploits/3064"
      },
      {
        "trust": 0.6,
        "url": "http://milw0rm.com/exploits/3064"
      },
      {
        "trust": 0.3,
        "url": "http://www.apple.com/quicktime/"
      },
      {
        "trust": 0.3,
        "url": "http://applefun.blogspot.com/2007/01/moab-01-01-2007-apple-quicktime-rtsp.html"
      },
      {
        "trust": 0.3,
        "url": "http://www.computerdefense.org/?p=225"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2007-0015"
      },
      {
        "trust": 0.1,
        "url": "http://www.us-cert.gov/legal.html\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://www.us-cert.gov/cas/techalerts/ta07-005a.html\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://www.us-cert.gov/cas/signup.html\u003e."
      },
      {
        "trust": 0.1,
        "url": "http://www.kb.cert.org/vuls/id/442497\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://www.us-cert.gov/reading_room/securing_browser/\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2007-0015\u003e"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/secunia_security_advisories/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/5090/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/software_inspector/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/about_secunia_advisories/"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#442497"
      },
      {
        "db": "VULHUB",
        "id": "VHN-23377"
      },
      {
        "db": "BID",
        "id": "21829"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-000005"
      },
      {
        "db": "PACKETSTORM",
        "id": "53507"
      },
      {
        "db": "PACKETSTORM",
        "id": "53358"
      },
      {
        "db": "NVD",
        "id": "CVE-2007-0015"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200701-001"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#442497"
      },
      {
        "db": "VULHUB",
        "id": "VHN-23377"
      },
      {
        "db": "BID",
        "id": "21829"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2007-000005"
      },
      {
        "db": "PACKETSTORM",
        "id": "53507"
      },
      {
        "db": "PACKETSTORM",
        "id": "53358"
      },
      {
        "db": "NVD",
        "id": "CVE-2007-0015"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200701-001"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2007-01-02T00:00:00",
        "db": "CERT/CC",
        "id": "VU#442497"
      },
      {
        "date": "2007-01-01T00:00:00",
        "db": "VULHUB",
        "id": "VHN-23377"
      },
      {
        "date": "2007-01-01T00:00:00",
        "db": "BID",
        "id": "21829"
      },
      {
        "date": "2007-04-01T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2007-000005"
      },
      {
        "date": "2007-01-13T20:37:59",
        "db": "PACKETSTORM",
        "id": "53507"
      },
      {
        "date": "2007-01-02T18:09:24",
        "db": "PACKETSTORM",
        "id": "53358"
      },
      {
        "date": "2007-01-01T23:28:00",
        "db": "NVD",
        "id": "CVE-2007-0015"
      },
      {
        "date": "2007-01-01T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200701-001"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2007-01-25T00:00:00",
        "db": "CERT/CC",
        "id": "VU#442497"
      },
      {
        "date": "2017-10-19T00:00:00",
        "db": "VULHUB",
        "id": "VHN-23377"
      },
      {
        "date": "2007-11-15T00:36:00",
        "db": "BID",
        "id": "21829"
      },
      {
        "date": "2007-04-01T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2007-000005"
      },
      {
        "date": "2017-10-19T01:29:55.503000",
        "db": "NVD",
        "id": "CVE-2007-0015"
      },
      {
        "date": "2007-01-25T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200701-001"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "PACKETSTORM",
        "id": "53507"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200701-001"
      }
    ],
    "trust": 0.7
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Apple QuickTime RTSP buffer overflow",
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#442497"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "buffer overflow",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200701-001"
      }
    ],
    "trust": 0.6
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2007-0015 (GCVE-0-2007-0015)

GSD-2007-0015

CERTA-2007-ALE-017

Description

Contournement provisoire

5.1 De manière générale

5.2 Sous Microsoft Windows :

5.3 Sous Apple MacOS X :

Solution

CERTA-2007-ALE-017

Description

Contournement provisoire

5.1 De manière générale

5.2 Sous Microsoft Windows :

5.3 Sous Apple MacOS X :

Solution

GHSA-XPC5-5QWG-24VR

FKIE_CVE-2007-0015

VAR-200701-0596

Tags

Sightings

Nomenclature