CVE-2007-2175
Apple QuickTime Java extensions - RCE
Title source: llmDescription
Apple QuickTime Java extensions (QTJava.dll), as used in Safari and other browsers, and when Java is enabled, allows remote attackers to execute arbitrary code via parameters to the toQTPointer method in quicktime.util.QTHandleRef, which can be used to modify arbitrary memory when creating QTPointerRef objects, as demonstrated during the "PWN 2 0WN" contest at CanSecWest 2007.
Exploits (4)
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubyremotemultiple
https://www.exploit-db.com/exploits/16295
exploitdb
WORKING POC
VERIFIED
by H D Moore · rubyremotemultiple
https://www.exploit-db.com/exploits/9943
exploitdb
WORKING POC
VERIFIED
by Shane Macaulay · textremotemultiple
https://www.exploit-db.com/exploits/29884
metasploit
WORKING POC
EXCELLENT
by hdm, kf, ddz · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/browser/qtjava_pointer.rb
References (12)
Scores
EPSS
0.8532
EPSS Percentile
99.4%
Details
Status
published
Products (1)
apple/safari
Published
Apr 24, 2007
Tracked Since
Feb 18, 2026