CVE-2007-0059

Apple QuickTime 3-7.1.3 - Remote Code Execution via HREFTrack Local URI

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-0059. PoCs published by MoAB.

AI-analyzed exploit summary This exploit leverages CVE-2007-0059, a vulnerability in Microsoft's implementation of the HREFTrack protocol handler, to execute arbitrary code via a crafted MOV file and malicious script. It sets up a fake FTP and HTTP server to serve payloads that trigger the vulnerability.

Description

Cross-zone scripting vulnerability in Apple Quicktime 3 to 7.1.3 allows remote user-assisted attackers to execute arbitrary code and list filesystem contents via a QuickTime movie (.MOV) with an HREF Track (HREFTrack) that contains an automatic action tag with a local URI, which is executed in a local zone during preview, as exploited by a MySpace worm.

Exploits (1)

exploitdb WORKING POC VERIFIED

by MoAB · rubyremoteosx

https://www.exploit-db.com/exploits/3077

View Code ZIP pw:eip

This exploit leverages CVE-2007-0059, a vulnerability in Microsoft's implementation of the HREFTrack protocol handler, to execute arbitrary code via a crafted MOV file and malicious script. It sets up a fake FTP and HTTP server to serve payloads that trigger the vulnerability.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Microsoft Windows (specific versions affected by CVE-2007-0059)

No auth needed

Prerequisites: Victim must open a crafted MOV file · Network access to serve payloads via HTTP/FTP

MITRE ATT&CK