CyberSec.Space Logo
Back to CVE Browser

CVE-2007-0999

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.1140%
EPSS Percentile24.94th
PublishedMar 10, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Format string vulnerability in Ekiga 2.0.3, and probably other versions, allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2007-1006.

Affected Platforms (CPE)

πŸ“¦
Gnome

Ekiga

<= 2.0.3

References & Advisories

πŸ”— http://www.mandriva.com/security/advisories?name=MDKSA-2007:058
πŸ”— http://www.redhat.com/support/errata/RHSA-2007-0087.html
πŸ”— http://www.ubuntu.com/usn/usn-434-1
πŸ”— https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10944
πŸ”— http://www.mandriva.com/security/advisories?name=MDKSA-2007:058
πŸ”— http://www.redhat.com/support/errata/RHSA-2007-0087.html
πŸ”— http://www.ubuntu.com/usn/usn-434-1
πŸ”— https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10944

Related Vulnerabilities

CVE-2007-100610.0

Multiple format string vulnerabilities in the gm_main_window_flash_message function in Ekiga before 2.0.5 allow attackers to cause...

CVE-2011-18305.7

Ekiga versions before 3.3.0 attempted to load a module from /tmp/ekiga_test.so.

CVE-2007-48975.0

pwlib, as used by Ekiga 2.0.5 and possibly other products, allows remote attackers to cause a denial of service (application crash...

CVE-2007-49245.0

The Open Phone Abstraction Library (opal), as used by (1) Ekiga before 2.0.10 and (2) OpenH323 before 2.2.4, allows remote attacke...