9.3
CVSSv2

CVE-2007-4677

Published: 07/11/2007 Updated: 26/10/2018
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 828
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Summary

Heap-based buffer overflow in Apple QuickTime prior to 7.3 allows remote attackers to execute arbitrary code via an invalid color table size when parsing the color table atom (CTAB) in a movie file, related to the CTAB RGB values.

Affected Products

Vendor Product Versions
AppleMac Os X10.3.9, 10.4.10, 10.5
MicrosoftWindows Vista-
MicrosoftWindows Xp-