Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5937

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2007-5937
Last Modified 20 Sep 2011 12:00:00
Published 13 Nov 2007 05:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-5937

Summary

Multiple buffer overflows in dvi2xx.c in dviljk in teTeX and TeXlive 2007 and earlier might allow user-assisted attackers to execute arbitrary code via a crafted DVI input file.

Vulnerable Systems

Application

  • Tetex

  • Tug Texlive 2007


References

FEDORA - FEDORA-2007-3390

CONFIRM - https://issues.rpath.com/browse/RPL-1928

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=368641

VUPEN - ADV-2007-3896

UBUNTU - USN-554-1

SECTRACK - 1019058

BID - 26469

BUGTRAQ - 20080212 FLEA-2008-0006-1 tetex tetex-dvips tetex-fonts

MANDRIVA - MDKSA-2007:230

CONFIRM - http://wiki.rpath.com/wiki/Advisories:rPSA-2007-0266

GENTOO - GLSA-200805-13

GENTOO - GLSA-200711-34

GENTOO - GLSA-200711-26

SECUNIA - 30168

SECUNIA - 28412

SECUNIA - 28107

SECUNIA - 27967

SECUNIA - 27743

SECUNIA - 27718

SECUNIA - 27686

SECUNIA - 27672

SUSE - SUSE-SR:2008:011

SUSE - SUSE-SR:2008:001

CONFIRM - http://bugs.gentoo.org/show_bug.cgi?id=198238

MISC - http://bugs.gentoo.org/attachment.cgi?id=135423


Last Updated: 27 May 2016 10:46:20