Vulnerabilities > CVE-2007-0406 - Unspecified vulnerability in Gxine
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Multiple buffer overflows in the (1) main function in (a) client.c, and the (2) server_setup and (3) server_client_connect functions in (b) server.c in gxine 0.5.9 and earlier allow local users to cause a denial of service (daemon crash) or gain privileges via a long HOME environment variable. NOTE: some of these details are obtained from third party information.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://osvdb.org/38320
- http://osvdb.org/38320
- http://osvdb.org/38321
- http://osvdb.org/38321
- http://sourceforge.net/project/shownotes.php?group_id=9655&release_id=476891
- http://sourceforge.net/project/shownotes.php?group_id=9655&release_id=476891
- http://www.vupen.com/english/advisories/2007/0259
- http://www.vupen.com/english/advisories/2007/0259
- http://xinehq.de/index.php/news?show_category_id=1
- http://xinehq.de/index.php/news?show_category_id=1
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31604
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31604