Lucene search

[email protected]CVE-2007-0654

HistoryMar 21, 2007 - 10:19 p.m.

CVE-2007-0654

2007-03-2122:19:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-0654

integer underflow

x multimedia system

xmms

remote code execution

stack-based buffer overflow

security vulnerability

nvd

7.2 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.232 Low

EPSS

Percentile

96.5%

JSON

Integer underflow in X MultiMedia System (xmms) 1.2.10 allows user-assisted remote attackers to execute arbitrary code via crafted header information in a skin bitmap image, which results in a stack-based buffer overflow.

CPENameOperatorVersion
x_multimedia_system:x_multimedia_systemx multimedia systemeq1.2.10

CPE	Name	Operator	Version
x_multimedia_system:x_multimedia_system	x multimedia system	eq	1.2.10

References

secunia.com/advisories/23986

secunia.com/advisories/24645

secunia.com/advisories/24804

secunia.com/advisories/24889

secunia.com/secunia_research/2007-47/advisory/

www.debian.org/security/2007/dsa-1277

www.mandriva.com/security/advisories?name=MDKSA-2007:071

www.novell.com/linux/security/advisories/2007_6_sr.html

www.securityfocus.com/archive/1/463408/100/0/threaded

www.securityfocus.com/bid/23078

www.ubuntu.com/usn/usn-445-1

www.vupen.com/english/advisories/2007/1057

exchange.xforce.ibmcloud.com/vulnerabilities/33203

7.2 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.232 Low

EPSS

Percentile

96.5%

JSON

Related for CVE-2007-0654

prion1 ubuntucve1 nessus6 ubuntu1 openvas4 securityvulns2 freebsd1 debian2