Showing 1 - 4 of 4

CVE-2007-3388

Status Candidate

Overview

Multiple format string vulnerabilities in (1) qtextedit.cpp, (2) qdatatable.cpp, (3) qsqldatabase.cpp, (4) qsqlindex.cpp, (5) qsqlrecord.cpp, (6) qglobal.cpp, and (7) qsvgdevice.cpp in QTextEdit in Trolltech Qt 3 before 3.3.8 20070727 allow remote attackers to execute arbitrary code via format string specifiers in text used to compose an error message.

Related Files

Debian Linux Security Advisory 1426-1: Posted Dec 8, 2007; Authored by Debian | Site debian.org; Debian Security Advisory 1426-1 - Several local/remote vulnerabilities have been discovered in the Qt GUI Library.; tags | advisory, remote, local, vulnerability; systems | linux, debian; advisories | CVE-2007-3388, CVE-2007-4137; SHA-256 | 5c082ffb313e5bed2505f52c4b98056b4600ea82437d9d3a9c050d680cc070dd; Download | Favorite | View

Gentoo Linux Security Advisory 200708-16: Posted Aug 24, 2007; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory GLSA 200708-16 - Tim Brown of Portcullis Computer Security Ltd and Dirk Mueller of KDE reported multiple format string errors in qWarning() calls in files qtextedit.cpp, qdatatable.cpp, qsqldatabase.cpp, qsqlindex.cpp, qsqlrecord.cpp, qglobal.cpp, and qsvgdevice.cpp. Versions less than 3.3.8-r3 are affected.; tags | advisory; systems | linux, gentoo; advisories | CVE-2007-3388; SHA-256 | 80a0f7dba946f1db00ba3c0d7e46e7509d5e70a1ae25e2200e1a0ad559695e67; Download | Favorite | View

Ubuntu Security Notice 495-1: Posted Aug 8, 2007; Authored by Ubuntu | Site security.ubuntu.com; Ubuntu Security Notice 495-1 - Several format string vulnerabilities have been discovered in Qt warning messages. By causing an application to process specially crafted input data which triggered Qt warnings, this could be exploited to execute arbitrary code with the privilege of the user running the application.; tags | advisory, arbitrary, vulnerability; systems | linux, ubuntu; advisories | CVE-2007-3388; SHA-256 | 3af02e0cb10c6ad4a19ff42552fd333e868c606423b7a9da6c9a09f0fa7b804d; Download | Favorite | View

Mandriva Linux Security Advisory 2007.151: Posted Aug 8, 2007; Authored by Mandriva | Site mandriva.com; Mandriva Linux Security Advisory - A number of format string flaws have been discovered in how Qt handled error messages by Dirk Mueller and Tracey Parry of Portcullis Computer Security. If an application linked against Qt created an error message from user-supplied data in a certain way, it could possibly lead to the execution of arbitrary code or a denial of service.; tags | advisory, denial of service, arbitrary; systems | linux, mandriva; advisories | CVE-2007-3388; SHA-256 | 85b644841b5c6e804f9410d7ae0928ba5edd7a6d6ea5c121b9cee9ee70a9285c; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 242 files
Ubuntu 52 files
Debian 22 files
LiquidWorm 15 files
Apple 9 files
Gentoo 8 files
Google Security Research 3 files
Alter Prime 3 files
Pierre Kim 2 files
Jann Horn 2 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,166)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,607)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,960)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,344)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,989)
UNIX (9,475)
UnixWare (188)
Windows (6,784)
Other

CVE-2007-3388

Overview

Related Files

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems