CVE-2007-2296: CVE-2007-2296

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2007-2296

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Integer overflow in the FlipFileTypeAtom_BtoN function in Apple Quicktime 7.1.5, and other versions before 7.2, allows remote attackers to execute arbitrary code via a crafted M4V (MP4) file.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Apple QuickTime MP4文件FlipFileTypeAtom_BtoN函数整数溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Apple QuickTime是一款流行的多媒体播放器，支持多种媒体格式。 QuickTime在处理包含畸形数据的MP4文档时存在漏洞，攻击者可能利用此漏洞通过诱使用户处理恶意MP4文件来控制用户机器。如果使用QuickTime加载了畸形的.MP4文件的话，FlipFileTypeAtom_BtoN() 函数可能无法正确地解析畸形数据，触发整数溢出，播放器会由于分段错误而停止响应，或以登录用户的权限执行任意指令。调试信息如下： Reason: KERN_PROTECTION_FAILURE at ad

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2007-2296

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2007-2296

Please Login to view more intelligence information

http://security-protocols.com/sp-x46-advisory.phpx_refsource_MISC
http://docs.info.apple.com/article.html?artnum=305947x_refsource_CONFIRM
http://www.osvdb.org/35578vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/26034third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/23652vdb-entryx_refsource_BID
http://www.securitytracker.com/id?1017967vdb-entryx_refsource_SECTRACK
http://www.securitytracker.com/id?1018373vdb-entryx_refsource_SECTRACK
http://www.us-cert.gov/cas/techalerts/TA07-193A.htmlthird-party-advisoryx_refsource_CERT
http://www.vupen.com/english/advisories/2007/2510vdb-entryx_refsource_VUPEN
http://lists.apple.com/archives/Security-announce/2007/Jul/msg00001.htmlvendor-advisoryx_refsource_APPLE
https://exchange.xforce.ibmcloud.com/vulnerabilities/34069vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2007-2296

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2007-2296

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2007-2296

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2007-2296

III. Intelligence Information for CVE-2007-2296

IV. Related Vulnerabilities

V. Comments for CVE-2007-2296

Leave a comment