PRIOn knowledge basePRION:CVE-2007-0654

HistoryMar 21, 2007 - 10:19 p.m.

Design/Logic Flaw

2007-03-2122:19:00

PRIOn knowledge base

www.prio-n.com

7.7 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.232 Low

EPSS

Percentile

96.4%

JSON

Integer underflow in X MultiMedia System (xmms) 1.2.10 allows user-assisted remote attackers to execute arbitrary code via crafted header information in a skin bitmap image, which results in a stack-based buffer overflow.

CPENameOperatorVersion
x_multimedia_systemeq1.2.10

CPE	Name	Operator	Version
	x_multimedia_system	eq	1.2.10

References

secunia.com/advisories/23986

secunia.com/advisories/24645

secunia.com/advisories/24804

secunia.com/advisories/24889

secunia.com/secunia_research/2007-47/advisory/

www.debian.org/security/2007/dsa-1277

www.mandriva.com/security/advisories?name=MDKSA-2007:071

www.novell.com/linux/security/advisories/2007_6_sr.html

www.securityfocus.com/archive/1/463408/100/0/threaded

www.securityfocus.com/bid/23078

www.ubuntu.com/usn/usn-445-1

www.vupen.com/english/advisories/2007/1057

exchange.xforce.ibmcloud.com/vulnerabilities/33203

7.7 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.232 Low

EPSS

Percentile

96.4%

JSON

Related for PRION:CVE-2007-0654