CVE-2007-0999

Related Files

Mandriva Linux Security Advisory 2007.058

Posted Mar 13, 2007

Authored by Mandriva | Site mandriva.com

Mandriva Linux Security Advisory - A format string flaw was discovered in how ekiga processes certain messages, which could permit a remote attacker that can connect to ekiga to potentially execute arbitrary code with the privileges of the user running ekiga. This is similar to the previous CVE-2007-1006, but the original evaluation/patches were incomplete.

tags | advisory, remote, arbitrary

systems | linux, mandriva

advisories | CVE-2007-0999

SHA-256 | 74059760ca396ac9aaacb0f5ccd2643fd0c6b428319aa2208dfe6b636aa57456

Download | Favorite | View

Ubuntu Security Notice 434-1

Posted Mar 13, 2007

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 434-1 - It was discovered that Ekiga had format string vulnerabilities beyond those fixed in USN-426-1. If a user was running Ekiga and listening for incoming calls, a remote attacker could send a crafted call request, and execute arbitrary code with the user's privileges.

tags | advisory, remote, arbitrary, vulnerability

systems | linux, ubuntu

advisories | CVE-2007-0999

SHA-256 | 4bb663bcca02745bd937d2b0350fc4948fe9be30a4b471dbc9b3fe104805a094

Download | Favorite | View