RSS   Vulnerabilities for 'EVI'   RSS

2008-01-18
 
CVE-2007-6429

CWE-362
 

 
Multiple integer overflows in X.Org Xserver before 1.4.1 allow context-dependent attackers to execute arbitrary code via (1) a GetVisualInfo request containing a 32-bit value that is improperly used to calculate an amount of memory for allocation by the EVI extension, or (2) a request containing values related to pixmap size that are improperly used in management of shared memory by the MIT-SHM extension.

 

 >>> Vendor: X.org 34 Products
Xfree86
X11r6
X11
Xterm
XDM
X.org
X11r7
Emu-linux-x87-xlibs
Xf86dga
Xinit
Xload
Xorg-server
Libx11
Libxfont
X window system
Xserver
X font server
Xinput
Tog-cup
EVI
Mit-shm
X server
X.org x11
Libxfixes
Libxi
Libxinerama
Libxrandr
Libxrender
Libxv
Libxvmc
Libxtst
X.org-server
X.xorg-server
Libxdmcp


Copyright 2024, cxsecurity.com

 

Back to Top