CVSS: 9.8EPSS: 3%CPEs: 1EXPL: 0CVE-2007-4990 – xfs heap overflow in the swap_char2b function
https://notcve.org/view.php?id=CVE-2007-4990
05 Oct 2007 — The swap_char2b function in X.Org X Font Server (xfs) before 1.0.5 allows context-dependent attackers to execute arbitrary code via (1) QueryXBitmaps and (2) QueryXExtents protocol requests with crafted size values that specify an arbitrary number of bytes to be swapped on the heap, which triggers heap corruption. La función swap_char2b de X.Org X Font Server (xfs) anterior a 1.0.5 permite a atacantes locales o remotos (dependiendo del contexto) ejecutar código de su elección mediante peticiones de protocol... • http://bugs.freedesktop.org/show_bug.cgi?id=12299 • CWE-122: Heap-based Buffer Overflow CWE-189: Numeric Errors •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2007-5189
https://notcve.org/view.php?id=CVE-2007-5189
03 Oct 2007 — Multiple SQL injection vulnerabilities in mes_add.php in x-script GuestBook 1.3a, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) name, (2) email, (3) icq, and (4) website parameters. Múltiples vulnerabilidades de inyección SQL en mes_add.php de x-script GuestBook 1.3a, cuando magic_quotes_gpc está desactivado, permite a atacantes remotos ejecutar comandos SQL de su elección a través de los parámetros (1) name, (2) email, (3) icq, y (4) website. • http://securityreason.com/securityalert/3186 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 3CVE-2007-4843 – Unreal Commander 0.92 - Directory Traversal
https://notcve.org/view.php?id=CVE-2007-4843
12 Sep 2007 — Directory traversal vulnerability in X-Diesel Unreal Commander 0.92 build 565 and 573 allows remote FTP servers to create or overwrite arbitrary files via a .. (dot dot) in a filename. NOTE: this can be leveraged for code execution by writing to a Startup folder. Vulnerabilidad de salto de directorio en X-Diesel Unreal Commander 0.92 construcción 565 y 573 permite a servidores FTP crear o sobrescribir archivos de su eleccióna través de la secuencia .. (punto punto) en un nombre de archivo. • https://www.exploit-db.com/exploits/30569 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 1CVE-2007-4844
https://notcve.org/view.php?id=CVE-2007-4844
12 Sep 2007 — X-Diesel Unreal Commander 0.92 build 565 and 573 does not properly react to an FTP server's behavior after sending a "CWD /" command, which allows remote FTP servers to cause a denial of service (infinite loop) by (1) repeatedly sending a 550 error response, or (2) sending a 550 error response and then disconnecting. X-Diesel Unreal Commander 0.92 build 565 y 573 no reacciona adecuadamente al comportamiento de un servidor FTP tras enviar un comando "CWD /", lo cual permite a servidores FTP remotos provocar ... • http://blog.hispasec.com/lab/advisories/adv_UnrealCommander_0_92_build_573_Multiple_FTP_Based_Vulnerabilities.txt • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0CVE-2007-4730 – X.org composite extension buffer overflow
https://notcve.org/view.php?id=CVE-2007-4730
11 Sep 2007 — Buffer overflow in the compNewPixmap function in compalloc.c in the Composite extension for the X.org X11 server before 1.4 allows local users to execute arbitrary code by copying data from a large pixel depth pixmap into a smaller pixel depth pixmap. Desbordamiento de búfer en la función compNewPixmap de compalloc.c en la extensión Composite para el servidor X11 X.org anterior a 1.4 permite a usuarios locales ejecutar código de su elección copiando datos de un mapa de píxeles con gran profundidad de píxel ... • http://bugs.freedesktop.org/show_bug.cgi?id=7447 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 2CVE-2007-4545 – Unreal Commander 0.92 - ZIP / RAR Archive Handling Traversal Arbitrary File Overwrite
https://notcve.org/view.php?id=CVE-2007-4545
27 Aug 2007 — Multiple directory traversal vulnerabilities in Unreal Commander 0.92 build 565 and 573 allow user-assisted remote attackers to create or overwrite arbitrary files via a .. (dot dot) in a filename within a (1) ZIP or (2) RAR archive. Múltiples vulnerabilidades de salto de directorio en Unreal Commander 0.92 construcción 565 y 573 permite a atacantes remotos con la intervención del usuario crear o sobrescribir archivos de su elección a través de una secuencia ..(punto punto) en un nombre de archivo con un ar... • https://www.exploit-db.com/exploits/30521 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 5.8EPSS: 0%CPEs: 2EXPL: 1CVE-2007-4546
https://notcve.org/view.php?id=CVE-2007-4546
27 Aug 2007 — Unreal Commander 0.92 build 565 and 573 lists the filenames from the Central Directory of a ZIP archive, but extracts to local filenames corresponding to names in Local File Header fields in this archive, which might allow remote attackers to trick a user into performing a dangerous file overwrite or creation. Unreal Commander 0.92 construcción 565 y 573 lista los nombres de archivo desde el directorio central de un archivo ZIP, pero extrae los nombres de fichero locales que corresponden a los nombres de lo... • http://osvdb.org/45831 •
CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0CVE-2007-4547
https://notcve.org/view.php?id=CVE-2007-4547
27 Aug 2007 — Unreal Commander 0.92 build 565 and 573 writes portions of heap memory into local files when extracting from an archive with malformed size information in a file header, which might allow user-assisted attackers to obtain sensitive information (memory contents) by reading the extracted files. NOTE: this issue is only a vulnerability if Unreal is run with privileges, or if the extracted files are made accessible to other users. Unreal Commander 0.92 construcción 565 y 573 escribe porciones de la pila de memo... • http://osvdb.org/45832 •
CVSS: 9.8EPSS: 90%CPEs: 1EXPL: 4CVE-2007-3068 – DVD X Player 4.1 Professional - '.PLF' File Buffer Overflow
https://notcve.org/view.php?id=CVE-2007-3068
06 Jun 2007 — Stack-based buffer overflow in DVD X Player 4.1 Professional allows remote attackers to execute arbitrary code via a PLF playlist containing a long filename. Desbordamiento de búfer basado en pila en DVD X Player 4.1 Professional permite a atacantes remotos ejecutar código de su elección a través de una lista de reproducción PLF que contenga un nombre de fichero largo. • https://www.exploit-db.com/exploits/4024 •
CVSS: 6.5EPSS: 1%CPEs: 4EXPL: 1CVE-2007-2437 – X.Org X Window System Xserver 1.3 - XRender Extension Divide by Zero Denial of Service
https://notcve.org/view.php?id=CVE-2007-2437
02 May 2007 — The X render (Xrender) extension in X.org X Window System 7.0, 7.1, and 7.2, with Xserver 1.3.0 and earlier, allows remote authenticated users to cause a denial of service (daemon crash) via crafted values to the (1) XRenderCompositeTrapezoids and (2) XRenderAddTraps functions, which trigger a divide-by-zero error. La extensión X render (Xrender) en X.org X Window System 7.0, 7.1, y 7.2, con Xserver 1.3.0 y anteriores, permite a usuarios remotos validados provocar denegación de servicio (caida de demonio) a... • https://www.exploit-db.com/exploits/29939 •