CyberSec.Space Logo
Back to CVE Browser

CVE-2007-1007

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0030%
EPSS Percentile37.13th
PublishedFeb 20, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Format string vulnerability in GnomeMeeting 1.0.2 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format strings in the name, which is not properly handled in a call to the gnomemeeting_log_insert function.

Affected Platforms (CPE)

πŸ“¦
Ekiga

Ekiga

= 1.0.2
πŸ’»
Redhat

Enterprise Linux

= 3.0
πŸ’»
Redhat

Enterprise Linux

= 3.0
πŸ’»
Redhat

Enterprise Linux

= 3.0
πŸ’»
Redhat

Enterprise Linux

= 4.0
πŸ’»
Redhat

Enterprise Linux

= 4.0
πŸ’»
Redhat

Enterprise Linux

= 4.0
πŸ’»
Redhat

Enterprise Linux Desktop

= 3.0
πŸ’»
Redhat

Enterprise Linux Desktop

= 4.0

References & Advisories

πŸ”— ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc
πŸ”— http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=229266
πŸ”— http://osvdb.org/32083
πŸ”— http://secunia.com/advisories/24185
πŸ”— http://secunia.com/advisories/24271
πŸ”— http://secunia.com/advisories/24284
πŸ”— http://secunia.com/advisories/24379
πŸ”— http://secunia.com/advisories/25119

Related Vulnerabilities

CVE-2007-100610.0

Multiple format string vulnerabilities in the gm_main_window_flash_message function in Ekiga before 2.0.5 allow attackers to cause...

CVE-2007-09999.3

Format string vulnerability in Ekiga 2.0.3, and probably other versions, allows remote attackers to execute arbitrary code via uns...

CVE-2011-18305.7

Ekiga versions before 3.3.0 attempted to load a module from /tmp/ekiga_test.so.

CVE-2007-49245.0

The Open Phone Abstraction Library (opal), as used by (1) Ekiga before 2.0.10 and (2) OpenH323 before 2.2.4, allows remote attacke...