CyberSec.Space Logo
返回 CVE 浏览器

CVE-2007-1007

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0030%
EPSS Percentile37.13th
Published2007年2月20日
Last Modified2026年4月23日

Vulnerability Description

Format string vulnerability in GnomeMeeting 1.0.2 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via format strings in the name, which is not properly handled in a call to the gnomemeeting_log_insert function.

Affected Platforms (CPE)

📦
Ekiga

Ekiga

= 1.0.2
💻
Redhat

Enterprise Linux

= 3.0
💻
Redhat

Enterprise Linux

= 3.0
💻
Redhat

Enterprise Linux

= 3.0
💻
Redhat

Enterprise Linux

= 4.0
💻
Redhat

Enterprise Linux

= 4.0
💻
Redhat

Enterprise Linux

= 4.0
💻
Redhat

Enterprise Linux Desktop

= 3.0
💻
Redhat

Enterprise Linux Desktop

= 4.0

References & Advisories

🔗 ftp://patches.sgi.com/support/free/security/advisories/20070201-01-P.asc
🔗 http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=229266
🔗 http://osvdb.org/32083
🔗 http://secunia.com/advisories/24185
🔗 http://secunia.com/advisories/24271
🔗 http://secunia.com/advisories/24284
🔗 http://secunia.com/advisories/24379
🔗 http://secunia.com/advisories/25119

相关漏洞威胁

CVE-2007-100610.0

Multiple format string vulnerabilities in the gm_main_window_flash_message function in Ekiga before 2.0.5 allow attackers to cause...

CVE-2007-09999.3

Format string vulnerability in Ekiga 2.0.3, and probably other versions, allows remote attackers to execute arbitrary code via uns...

CVE-2011-18305.7

Ekiga versions before 3.3.0 attempted to load a module from /tmp/ekiga_test.so.

CVE-2007-49245.0

The Open Phone Abstraction Library (opal), as used by (1) Ekiga before 2.0.10 and (2) OpenH323 before 2.2.4, allows remote attacke...