Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2007-1007

Published: 20/02/2007 Updated: 11/10/2017
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 890
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Ekiga

Vulnerability Summary

Format string vulnerability in GnomeMeeting 1.0.2 and previous versions allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via format strings in the name, which is not properly handled in a call to the gnomemeeting_log_insert function.

Vulnerable Product Search on Vulmon Subscribe to Product

ekiga ekiga 1.0.2

redhat enterprise linux 3.0

redhat enterprise linux 4.0

redhat enterprise linux desktop 3.0

redhat enterprise linux desktop 4.0

Vendor Advisories

Ubuntu Security Notice: ekiga, gnomemeeting vulnerabilities
Mu Security discovered a format string vulnerability in Ekiga If a user was running Ekiga and listening for incoming calls, a remote attacker could send a crafted call request, and execute arbitrary code with the user’s privileges ...
Debian Security Advisories: DSA-1262-1 gnomemeeting -- format string
Mu Security discovered that a format string vulnerability in the VoIP solution GnomeMeeting allows the execution of arbitrary code For the stable distribution (sarge) this problem has been fixed in version 121-1sarge1 For the upcoming stable distribution (etch) this problem has been fixed in version 203-21 of the ekiga package For the unsta ...

References

NVD-CWE-Otherhttp://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=229266http://www.redhat.com/support/errata/RHSA-2007-0086.htmlhttp://secunia.com/advisories/24185http://www.debian.org/security/2007/dsa-1262http://www.ubuntu.com/usn/usn-426-1http://secunia.com/advisories/24271http://secunia.com/advisories/24379http://www.novell.com/linux/security/advisories/2007_9_sr.htmlhttp://secunia.com/advisories/25119http://www.mandriva.com/security/advisories?name=MDKSA-2007:045ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.aschttp://secunia.com/advisories/24284http://osvdb.org/32083https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11776https://usn.ubuntu.com/426-1/https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3400CVE-2023-7252CVE-2024-21111denial of serviceCVE-2024-29661CVE-2024-22856remote attackersencryptionCVE-2023-38299
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook