Home > Vulnerability Database > CVE-2007-4990

Mend.io Vulnerability Database

CVE-2007-4990

Date: October 5, 2007

The swap_char2b function in X.Org X Font Server (xfs) before 1.0.5 allows context-dependent attackers to execute arbitrary code via (1) QueryXBitmaps and (2) QueryXExtents protocol requests with crafted size values that specify an arbitrary number of bytes to be swapped on the heap, which triggers heap corruption.

Severity Score

7.3

Related Resources (42)

Url: http://secunia.com/advisories/27040

Url: http://secunia.com/advisories/27060

Url: http://secunia.com/advisories/29420

Url: http://www.novell.com/linux/security/advisories/2007_54_xorg.html

Url: http://www.securitytracker.com/id?1018763

Url: http://sunsolve.sun.com/search/document.do?assetkey=1-66-200642-1

Url: http://secunia.com/advisories/27560

Url: http://secunia.com/advisories/27240

Url: http://www.vupen.com/english/advisories/2008/0924/references

Url: http://docs.info.apple.com/article.html?artnum=307562

Url: http://www.vupen.com/english/advisories/2007/3467

Url: http://sunsolve.sun.com/search/document.do?assetkey=1-26-103114-1

Url: http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html

Url: http://www.vupen.com/english/advisories/2007/3338

Url: http://www.vupen.com/english/advisories/2007/3337

Url: https://issues.rpath.com/browse/RPL-1756

Url: http://bugs.gentoo.org/show_bug.cgi?id=194606

Url: http://www.mandriva.com/security/advisories?name=MDKSA-2007:210

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2007-4990

Url: http://lists.freedesktop.org/archives/xorg-announce/2007-October/000416.html

Url: http://bugs.freedesktop.org/show_bug.cgi?id=12299

Url: https://exchange.xforce.ibmcloud.com/vulnerabilities/36920

Url: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=602

Url: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01323725

Url: https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00352.html

Url: http://secunia.com/advisories/28542

Url: http://secunia.com/advisories/28004

Url: http://www.securityfocus.com/bid/25898

Url: http://secunia.com/advisories/27176

Url: http://secunia.com/advisories/27052

Url: http://www.vupen.com/english/advisories/2008/0149

Url: https://access.redhat.com/security/cve/CVE-2007-4990

Url: http://www.securityfocus.com/archive/1/481432/100/0/threaded

Url: http://www.redhat.com/support/errata/RHSA-2008-0030.html

Url: http://security.gentoo.org/glsa/glsa-200710-11.xml

Url: http://secunia.com/advisories/28514

Url: http://secunia.com/advisories/28536

Url: https://nvd.nist.gov/vuln/detail/CVE-2007-4990

Url: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11599

Url: http://secunia.com/advisories/27228

Url: http://www.redhat.com/support/errata/RHSA-2008-0029.html

Url: https://www.mend.io/vulnerability-database/CVE-2007-4990

Severity Score

7.3

Weakness Type (CWE)

Numeric Errors

CWE-189

CVSS v3.1

Base Score:	7.3
Attack Vector (AV):	NETWORK
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	LOW
Integrity (I):	LOW
Availability (A):	LOW

CVSS v2

Base Score:	7.5
Access Vector (AV):	NETWORK
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	PARTIAL
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2007-4990

Date: October 5, 2007

Severity Score

Related Resources (42)

Severity Score

Weakness Type (CWE)

CVSS v3.1

CVSS v2

Do you need more information?