Lucene search

[email protected]NVD:CVE-2007-1220

HistoryMar 02, 2007 - 10:19 p.m.

CVE-2007-1220

2007-03-0222:19:00

[email protected]

web.nvd.nist.gov

CVSS2

6.2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

AI Score

6.8

Confidence

Low

EPSS

0.003

Percentile

70.6%

JSON

The Hypervisor in Microsoft Xbox 360 kernel 4532 and 4548 does not properly verify the parameters passed to the syscall dispatcher, which allows attackers with physical access to bypass code-signing requirements and execute arbitrary code.

Affected configurations

Nvd

Node

microsoftxbox_360Match4532

microsoftxbox_360Match4548

AND

microsoftxbox_360

VendorProductVersionCPE
microsoftxbox_3604532cpe:2.3:h:microsoft:xbox_360:4532:*:*:*:*:*:*:*
microsoftxbox_3604548cpe:2.3:h:microsoft:xbox_360:4548:*:*:*:*:*:*:*
microsoftxbox_360*cpe:2.3:h:microsoft:xbox_360:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	xbox_360	4532	cpe:2.3:h:microsoft:xbox_360:4532:::::::*
microsoft	xbox_360	4548	cpe:2.3:h:microsoft:xbox_360:4548:::::::*
microsoft	xbox_360	*	cpe:2.3:h:microsoft:xbox_360::::::::

References

securityreason.com/securityalert/2367

www.securityfocus.com/archive/1/461489/100/0/threaded

www.securityfocus.com/bid/22745

CVSS2

6.2

Attack Vector

LOCAL

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:H/Au:N/C:C/I:C/A:C

AI Score

6.8

Confidence

Low

EPSS

0.003

Percentile

70.6%

JSON

Related for NVD:CVE-2007-1220

cve1 cvelist1 prion1 securityvulns1