CVE-2007-4730
CVSS V2 Medium 4.3
CVSS V3 None
Description
Buffer overflow in the compNewPixmap function in compalloc.c in the Composite extension for the X.org X11 server before 1.4 allows local users to execute arbitrary code by copying data from a large pixel depth pixmap into a smaller pixel depth pixmap.
Overview
- CVE ID
- CVE-2007-4730
- Assigner
- cve@mitre.org
- Vulnerability Status
- Modified
- Published Version
- 2007-09-11T19:17:00
- Last Modified Date
- 2017-09-29T01:29:21
Weakness Enumerations
CPE Configuration (Product)
| CPE | Vulnerable | Operator | Version Start | Version End |
|---|---|---|---|---|
| cpe:2.3:a:x.org:xorg-server:1.01:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:a:x.org:xorg-server:1.1:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:a:x.org:xorg-server:1.02:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:a:x.org:xorg-server:1.2:*:*:*:*:*:*:* | 1 | OR | ||
| cpe:2.3:a:x.org:xorg-server:1.3:*:*:*:*:*:*:* | 1 | OR |
CVSS Version 2
- Version
- 2.0
- Vector String
- AV:L/AC:L/Au:S/C:P/I:P/A:P
- Access Vector
- LOCAL
- Access Compatibility
- LOW
- Authentication
- SINGLE
- Confidentiality Impact
- PARTIAL
- Integrity Impact
- PARTIAL
- Availability Impact
- PARTIAL
- Base Score
- 4.3
- Severity
- MEDIUM
- Exploitability Score
- 3.1
- Impact Score
- 6.4
References
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2007-4730 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4730 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2022-05-10 08:27:43 | Added to TrackCVE |