CVE Vulnerability

CVE-2007-0654

Integer underflow in X MultiMedia System (xmms) 1.2.10 allows user-assisted remote attackers to execute arbitrary code via crafted header information in a skin bitmap image, which results in a stack-based buffer overflow.

9.3 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 8.6 / Impact : 10

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

Scope

References
Link Resource
http://secunia.com/secunia_research/2007-47/advisory/ Vendor Advisory
http://www.securityfocus.com/bid/23078
http://secunia.com/advisories/23986
http://www.ubuntu.com/usn/usn-445-1
http://secunia.com/advisories/24645
http://www.debian.org/security/2007/dsa-1277
http://secunia.com/advisories/24804
http://www.novell.com/linux/security/advisories/2007_6_sr.html
http://secunia.com/advisories/24889
http://www.mandriva.com/security/advisories?name=MDKSA-2007:071
http://www.vupen.com/english/advisories/2007/1057
https://exchange.xforce.ibmcloud.com/vulnerabilities/33203
http://www.securityfocus.com/archive/1/463408/100/0/threaded
Configurations

Configuration 1

cpe:2.3:a:x_multimedia_system:x_multimedia_system:1.2.10:*:*:*:*:*:*:*
Information

Published : 2007-03-21 10:19

Updated : 2018-10-16 04:33

NVD link : CVE-2007-0654

Mitre link : CVE-2007-0654

Products Affected
No products.
CWE
NVD-CWE-Other