Detections
Analytics
QuickTime < 7.3 Multiple Vulnerabilities
medium Nessus Network Monitor Plugin ID 4277
Synopsis
The remote Windows host contains an application that is affected by multiple issues.Description
The version of QuickTime installed on the remote Windows host is older than 7.3. Such versions contain several vulnerabilities that may allow an attacker to execute arbitrary code on the remote host if the user can be convinced to open a specially-crafted file with QuickTime.Solution
Upgrade to version 7.3 or higher.See Also
http://docs.info.apple.com/article.html?artnum=306896
http://lists.apple.com/archives/security-announce/2007/Nov/msg00000.html
Plugin Details
Severity: Medium
ID: 4277
Family: Web Clients
Published: 11/5/2007
Updated: 3/6/2019
Nessus ID: 27626
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Medium
Base Score: 6.8
Temporal Score: 5
Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS v3
Risk Factor: Medium
Base Score: 5.6
Temporal Score: 4.9
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:apple:quicktime
Reference Information
CVE: CVE-2007-2395, CVE-2007-3750, CVE-2007-3751, CVE-2007-4672, CVE-2007-4674, CVE-2007-4675, CVE-2007-4676, CVE-2007-4677