Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2007-0654
HistoryMar 21, 2007 - 12:00 a.m.

CVE-2007-0654

2007-03-2100:00:00
ubuntu.com
ubuntu.com
8

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.232 Low

EPSS

Percentile

96.5%

JSON

Integer underflow in X MultiMedia System (xmms) 1.2.10 allows user-assisted
remote attackers to execute arbitrary code via crafted header information
in a skin bitmap image, which results in a stack-based buffer overflow.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchxmms< 1.2.10+cvs20050809-4ubuntu5.1UNKNOWN
ubuntu6.10noarchxmms< 1.2.10+cvs20060429-1ubuntu2.1UNKNOWN
ubuntu7.04noarchxmms< 1.2.10+20061201-1ubuntu3UNKNOWN

Related

cve 1
prion 1
nessus 6
openvas 6
ubuntu 1
securityvulns 2
freebsd 1
debian 2
cve
cve
CVE-2007-0654
2007-03-21 22:19:00
prion
prion
Design/Logic Flaw
2007-03-21 22:19:00
nessus
nessus
SuSE9 Security Update : XMMS (YOU Patch Number 11483)
2009-09-24 00:00:00
openSUSE 10 Security Update : xmms (xmms-3073)
2007-10-17 00:00:00
SuSE 10 Security Update : XMMS (ZYPP Patch Number 3075)
2007-12-13 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-1277-1)
2008-01-17 00:00:00
SLES9: Security update for XMMS
2009-10-10 00:00:00
Ubuntu Update for xmms vulnerabilities USN-445-1
2009-03-23 00:00:00
ubuntu
ubuntu
XMMS vulnerabilities
2007-03-27 00:00:00
securityvulns
securityvulns
Secunia Research: XMMS Integer Overflow and Underflow Vulnerabilities
2007-03-22 00:00:00
XMMS multimedia player multiple integer overflows
2007-03-22 00:00:00
freebsd
freebsd
xmms -- Integer Overflow And Underflow Vulnerabilities
2007-02-06 00:00:00
debian
debian
[SECURITY] [DSA 1277-1] New XMMS packages fix arbitrary code execution
2007-04-04 22:04:39
[SECURITY] [DSA 1277-1] New XMMS packages fix arbitrary code execution
2007-04-04 22:04:39

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.232 Low

EPSS

Percentile

96.5%

JSON
Related for UB:CVE-2007-0654
cve1prion1nessus6openvas6ubuntu1securityvulns2freebsd1debian2