Vulnerability in Apple Mac_os_x
CVE-2007-2389
Apple QuickTime for Java 7.1.6 on Mac OS X and Windows does not clear potentially sensitive memory before use, which allows remote attackers to read memory from a web browser via unknown vectors related to Java applets.
EPSS: 0.028 (84.6th percentile) — read the EPSS interpretation.
Affected products
- Apple Mac_os_x — versions 10.0, 10.0.1, 10.0.2
- Apple Quicktime — versions 7.1.6
- Microsoft All_windows
- N/a — versions n/a
References
- cve@mitre.org (vendor-advisory, x_refsource_APPLE)
- cve@mitre.org (US Government Resource, x_refsource_CERT-VN, third-party-advisory)
- cve@mitre.org (vdb-entry, x_refsource_VUPEN)
- cve@mitre.org (vdb-entry, x_refsource_SECTRACK)
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (x_refsource_SECUNIA, third-party-advisory)
- cve@mitre.org (x_refsource_OSVDB, vdb-entry)
- cve@mitre.org (vdb-entry, x_refsource_BID)