CVE-2007-2402
QuickTime for Java in Apple Quicktime before 7.2 does not perform sufficient "access control," which allows remote attackers to obtain sensitive information (screen content) via crafted Java applets.
| Software | From | Fixed in |
|---|---|---|
| apple / quicktime | 7.0.3 | 7.0.3.x |
| apple / quicktime | 7.1.5 | 7.1.5.x |
| apple / quicktime | 7.0.1 | 7.0.1.x |
| apple / quicktime | 7.0 | 7.0.x |
| apple / quicktime | 7.0.2 | 7.0.2.x |
| apple / quicktime | 7.0.4 | 7.0.4.x |
| apple / quicktime | 7.1.2 | 7.1.2.x |
| apple / quicktime | 7.1 | 7.1.x |
| apple / quicktime | 7.1.1 | 7.1.1.x |
| apple / quicktime | 7.1.4 | 7.1.4.x |
| apple / quicktime | 7.1.3 | 7.1.3.x |
- http://docs.info.apple.com/article.html?artnum=305947
- http://lists.apple.com/archives/Security-announce/2007/Jul/msg00001.html
- http://osvdb.org/36131
- http://secunia.com/advisories/26034
- http://www.securityfocus.com/bid/24873
- http://www.securitytracker.com/id?1018373
- http://www.us-cert.gov/cas/techalerts/TA07-193A.html
- http://www.vupen.com/english/advisories/2007/2510
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35361
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime