Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2007-1667

Опубликовано: 24 мар. 2007
Источник: debian
EPSS Низкий

Описание

Multiple integer overflows in (1) the XGetPixel function in ImUtil.c in X.Org libx11 before 1.0.3, and (2) XInitImage function in xwd.c for ImageMagick, allow user-assisted remote attackers to cause a denial of service (crash) or obtain sensitive information via crafted images with large or negative values that trigger a buffer overflow.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
xfree86removedpackage
libx11fixed2:1.0.3-7package
graphicsmagickfixed1.1.7-14package
imagemagickfixed7:6.2.4.5.dfsg1-1package

Примечания

  • Discovered through CVE-2007-0770.

  • With certain mail user agents, this issue is likely exploitable

  • without much user interaction.

EPSS

Процентиль: 77%
0.0114
Низкий

Связанные уязвимости

ubuntu
около 18 лет назад

Multiple integer overflows in (1) the XGetPixel function in ImUtil.c in X.Org libx11 before 1.0.3, and (2) XInitImage function in xwd.c for ImageMagick, allow user-assisted remote attackers to cause a denial of service (crash) or obtain sensitive information via crafted images with large or negative values that trigger a buffer overflow.

redhat
больше 18 лет назад

Multiple integer overflows in (1) the XGetPixel function in ImUtil.c in X.Org libx11 before 1.0.3, and (2) XInitImage function in xwd.c for ImageMagick, allow user-assisted remote attackers to cause a denial of service (crash) or obtain sensitive information via crafted images with large or negative values that trigger a buffer overflow.

nvd
около 18 лет назад

Multiple integer overflows in (1) the XGetPixel function in ImUtil.c in X.Org libx11 before 1.0.3, and (2) XInitImage function in xwd.c for ImageMagick, allow user-assisted remote attackers to cause a denial of service (crash) or obtain sensitive information via crafted images with large or negative values that trigger a buffer overflow.

github
около 3 лет назад

Multiple integer overflows in (1) the XGetPixel function in ImUtil.c in X.Org libx11 before 1.0.3, and (2) XInitImage function in xwd.c for ImageMagick, allow user-assisted remote attackers to cause a denial of service (crash) or obtain sensitive information via crafted images with large or negative values that trigger a buffer overflow.

oracle-oval
почти 18 лет назад

ELSA-2007-0157: Moderate: xorg-x11-apps/libX11 security updates (MODERATE)

EPSS

Процентиль: 77%
0.0114
Низкий