CVE-2007-4677

Published: Nov 7, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

Heap-based buffer overflow in Apple QuickTime before 7.3 allows remote attackers to execute arbitrary code via an invalid color table size when parsing the color table atom (CTAB) in a movie file, related to the CTAB RGB values.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

TA07-310A

third-party-advisory

x_refsource_CERT

http://docs.info.apple.com/article.html?artnum=306896

x_refsource_CONFIRM

http://www.zerodayinitiative.com/advisories/ZDI-07-065.html

x_refsource_MISC

26338

vdb-entry

x_refsource_BID

VU#445083

third-party-advisory

x_refsource_CERT-VN

APPLE-SA-2007-11-05

vendor-advisory

x_refsource_APPLE

27523

third-party-advisory

x_refsource_SECUNIA

38544

vdb-entry

x_refsource_OSVDB

quicktime-colortable-atom-bo(38283)

vdb-entry

x_refsource_XF

20071105 ZDI-07-065: Apple QuickTime Color Table RGB Parsing Heap Corruption Vulnerability

mailing-list

x_refsource_BUGTRAQ

1018894

vdb-entry

x_refsource_SECTRACK

ADV-2007-3723

vdb-entry

x_refsource_VUPEN

3352

third-party-advisory

x_refsource_SREASON

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2007-4677

Description

Affected Products

References