CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2007-1006

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0920%
EPSS Percentile0.54th
Published2007年2月20日
Last Modified2026年4月23日

Vulnerability Description

Multiple format string vulnerabilities in the gm_main_window_flash_message function in Ekiga before 2.0.5 allow attackers to cause a denial of service and possibly execute arbitrary code via a crafted Q.931 SETUP packet.

Affected Platforms (CPE)

📦
Ekiga

Ekiga

<= 2.0.4

References & Advisories

🔗 http://fedoranews.org/cms/node/2682
🔗 http://fedoranews.org/cms/node/2683
🔗 http://labs.musecurity.com/advisories/MU-200702-01.txt
🔗 http://mail.gnome.org/archives/ekiga-list/2007-February/msg00060.html
🔗 http://secunia.com/advisories/24194
🔗 http://secunia.com/advisories/24228
🔗 http://secunia.com/advisories/24229
🔗 http://secunia.com/advisories/24271

相關漏洞威脅

CVE-2007-09999.3

Format string vulnerability in Ekiga 2.0.3, and probably other versions, allows remote attackers to execute arbitrary code via uns...

CVE-2011-18305.7

Ekiga versions before 3.3.0 attempted to load a module from /tmp/ekiga_test.so.

CVE-2007-48975.0

pwlib, as used by Ekiga 2.0.5 and possibly other products, allows remote attackers to cause a denial of service (application crash...

CVE-2007-49245.0

The Open Phone Abstraction Library (opal), as used by (1) Ekiga before 2.0.10 and (2) OpenH323 before 2.2.4, allows remote attacke...