Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4730

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2007-4730
Last Modified 07 Mar 2011 09:59:05
Published 11 Sep 2007 03:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2007-4730

Summary

Buffer overflow in the compNewPixmap function in compalloc.c in the Composite extension for the X.org X11 server before 1.4 allows local users to execute arbitrary code by copying data from a large pixel depth pixmap into a smaller pixel depth pixmap.

Vulnerable Systems

Application

  • X.org Xorg-server 1.01

  • X.org Xorg-server 1.02

  • X.org Xorg-server 1.1

  • X.org Xorg-server 1.2

  • X.org Xorg-server 1.3


References

DEBIAN - DSA-1372

SECUNIA - 26755

SECUNIA - 26743

VUPEN - ADV-2007-3098

CONFIRM - http://wiki.rpath.com/wiki/Advisories:rPSA-2007-0187

OSVDB - 37726

MLIST - [xorg-announce] 20070906 xorg-server 1.4

CONFIRM - http://bugs.freedesktop.org/show_bug.cgi?id=7447

CONFIRM - https://issues.rpath.com/browse/RPL-1728

XF - xorg-composite-bo(36535)

UBUNTU - USN-514-1

SECTRACK - 1018665

BID - 25606

REDHAT - RHSA-2007:0898

SUSE - SUSE-SA:2007:054

MANDRIVA - MDVSA-2008:022

MANDRIVA - MDKSA-2007:178

GENTOO - GLSA-200805-07

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2007-394.htm

GENTOO - GLSA-200710-16

SECUNIA - 30161

SECUNIA - 27228

SECUNIA - 27179

SECUNIA - 27147

SECUNIA - 26897

SECUNIA - 26859

SECUNIA - 26823

SECUNIA - 26763

CONFIRM - http://bugs.gentoo.org/show_bug.cgi?id=191964

Related Patches

Novell SUSE 2007:4485 xorg-x11 security update for SLE 10 SP1 i586


Last Updated: 27 May 2016 10:45:57