XInput Extension Vulnerability in X.Org Xserver
CVE-2007-6427

Currently unrated

Key Information:

Vendor: X.org
Status: X Server
Vendor: CVE Published:; 18 January 2008

What is CVE-2007-6427?

The XInput extension in X.Org Xserver versions prior to 1.4.1 is susceptible to a vulnerability that allows context-dependent attackers to execute arbitrary code. This issue arises from improper handling of requests during the byte swapping process, leading to potential heap corruption across several functions. This vulnerability requires careful consideration and prompt action to mitigate risks associated with unauthorized access or system compromise.

References

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://secunia.com/advisories/28542

third-party-advisoryx_refsource_SECUNIA

http://secunia.com/advisories/29139

third-party-advisoryx_refsource_SECUNIA

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 18, 2008
Vulnerability Reserved
Dec 18, 2007

X.org

What is CVE-2007-6427?

References

Timeline