admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-06-12 02:04:49 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2007/CVE-2007-06xx/CVE-2007-0654.json
cad-safe-bot db95377d9f Auto-Update: 2024-04-04T08:42:25.815847+00:00
2024-04-04 08:46:00 +00:00

137 lines
4.3 KiB
JSON
Raw Blame History

{
"id": "CVE-2007-0654",
"sourceIdentifier": "PSIRT-CNA@flexerasoftware.com",
"published": "2007-03-21T22:19:00.000",
"lastModified": "2018-10-16T16:33:44.827",
"vulnStatus": "Modified",
"descriptions": [
{
"lang": "en",
"value": "Integer underflow in X MultiMedia System (xmms) 1.2.10 allows user-assisted remote attackers to execute arbitrary code via crafted header information in a skin bitmap image, which results in a stack-based buffer overflow."
},
{
"lang": "es",
"value": "Desbordamiento inferior de b\u00fafer en X MultiMedia System (xmms) 1.2.10 permite a atacantes remotos con la intervenci\u00f3n del usuario ejecutar c\u00f3digo de su elecci\u00f3n mediante informaci\u00f3n de cabecera manipulada en una imagen de mapa de bits de una piel (skin), que resulta en un desbordamiento de b\u00fafer basado en pila."
}
],
"vendorComments": [
{
"organization": "Red Hat",
"comment": "Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=228013\n\nThe Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw.",
"lastModified": "2008-04-04T00:00:00"
}
],
"metrics": {
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"accessVector": "NETWORK",
"accessComplexity": "MEDIUM",
"authentication": "NONE",
"confidentialityImpact": "COMPLETE",
"integrityImpact": "COMPLETE",
"availabilityImpact": "COMPLETE",
"baseScore": 9.3
},
"baseSeverity": "HIGH",
"exploitabilityScore": 8.6,
"impactScore": 10.0,
"acInsufInfo": false,
"obtainAllPrivilege": true,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": true
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
}
],
"configurations": [
{
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:a:x_multimedia_system:x_multimedia_system:1.2.10:*:*:*:*:*:*:*",
"matchCriteriaId": "C0FEF0E6-816D-4A7C-90A1-72A205F387A3"
}
]
}
]
}
],
"references": [
{
"url": "http://secunia.com/advisories/23986",
"source": "PSIRT-CNA@flexerasoftware.com"
},
{
"url": "http://secunia.com/advisories/24645",
"source": "PSIRT-CNA@flexerasoftware.com"
},
{
"url": "http://secunia.com/advisories/24804",
"source": "PSIRT-CNA@flexerasoftware.com"
},
{
"url": "http://secunia.com/advisories/24889",
"source": "PSIRT-CNA@flexerasoftware.com"
},
{
"url": "http://secunia.com/secunia_research/2007-47/advisory/",
"source": "PSIRT-CNA@flexerasoftware.com",
"tags": [
"Vendor Advisory"
]
},
{
"url": "http://www.debian.org/security/2007/dsa-1277",
"source": "PSIRT-CNA@flexerasoftware.com"
},
{
"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2007:071",
"source": "PSIRT-CNA@flexerasoftware.com"
},
{
"url": "http://www.novell.com/linux/security/advisories/2007_6_sr.html",
"source": "PSIRT-CNA@flexerasoftware.com"
},
{
"url": "http://www.securityfocus.com/archive/1/463408/100/0/threaded",
"source": "PSIRT-CNA@flexerasoftware.com"
},
{
"url": "http://www.securityfocus.com/bid/23078",
"source": "PSIRT-CNA@flexerasoftware.com"
},
{
"url": "http://www.ubuntu.com/usn/usn-445-1",
"source": "PSIRT-CNA@flexerasoftware.com"
},
{
"url": "http://www.vupen.com/english/advisories/2007/1057",
"source": "PSIRT-CNA@flexerasoftware.com"
},
{
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33203",
"source": "PSIRT-CNA@flexerasoftware.com"
}
]
}
Reference in New Issue View Git Blame Copy Permalink