Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6532

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2007-6532
Last Modified 07 Mar 2011 10:03:07
Published 09 Jan 2008 06:46:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-6532

Summary

Double free vulnerability in the Widget Library (libxfcegui4) in Xfce before 4.4.2 might allow remote attackers to execute arbitrary code via unknown vectors related to the "cliend id, program name and working directory in session management."

Vulnerable Systems

Application

  • Xfce 4.4.1


References

CONFIRM - http://www.xfce.org/documentation/changelogs/4.4.2

VUPEN - ADV-2008-0080

GENTOO - GLSA-200801-06

CONFIRM - http://bugs.gentoo.org/show_bug.cgi?id=201292


Last Updated: 27 May 2016 10:46:32