CVE-2007-6428
xfree86: information disclosure via TOG-CUP extension
Severity Score
5.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The ProcGetReservedColormapEntries function in the TOG-CUP extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to read the contents of arbitrary memory locations via a request containing a 32-bit value that is improperly used as an array index.
La función ProcGetReservedColormapEntries de la extensión TOG-CUP de X.Org Xserver versiones anteriores a 1.4.1 permite a atacantes locales o remotos dependientes del contexto leer el contenido de ubicaciones de memoria de su elección mediante peticiones conteniendo un valor de 32 bits que se utiliza inapropiadamente como un índice de array.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2007-12-18 CVE Reserved
- 2008-01-18 CVE Published
- 2024-08-07 CVE Updated
- 2024-10-14 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (66)
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
http://lists.freedesktop.org/archives/xorg/2008-January/031918.html | 2018-10-15 | |
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103200-1 | 2018-10-15 | |
http://www.securityfocus.com/bid/27336 | 2018-10-15 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
X.org Search vendor "X.org" | Tog-cup Search vendor "X.org" for product "Tog-cup" | * | - |
Affected
| ||||||
X.org Search vendor "X.org" | Xserver Search vendor "X.org" for product "Xserver" | <= 1.4 Search vendor "X.org" for product "Xserver" and version " <= 1.4" | - |
Affected
|