CVE - CVE-2007-3388

CVE-ID
CVE-2007-3388	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Multiple format string vulnerabilities in (1) qtextedit.cpp, (2) qdatatable.cpp, (3) qsqldatabase.cpp, (4) qsqlindex.cpp, (5) qsqlrecord.cpp, (6) qglobal.cpp, and (7) qsvgdevice.cpp in QTextEdit in Trolltech Qt 3 before 3.3.8 20070727 allow remote attackers to execute arbitrary code via format string specifiers in text used to compose an error message.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
MISC:1018485 URL:http://securitytracker.com/id?1018485 MISC:20070801-01-P URL:ftp://patches.sgi.com/support/free/security/advisories/20070801-01-P.asc MISC:20070803 FLEA-2007-0042-1 qt URL:http://www.securityfocus.com/archive/1/475480/30/5550/threaded MISC:24460 URL:http://secunia.com/advisories/24460 MISC:25154 URL:http://www.securityfocus.com/bid/25154 MISC:26264 URL:http://secunia.com/advisories/26264 MISC:26284 URL:http://secunia.com/advisories/26284 MISC:26291 URL:http://secunia.com/advisories/26291 MISC:26295 URL:http://secunia.com/advisories/26295 MISC:26298 URL:http://secunia.com/advisories/26298 MISC:26306 URL:http://secunia.com/advisories/26306 MISC:26385 URL:http://secunia.com/advisories/26385 MISC:26607 URL:http://secunia.com/advisories/26607 MISC:26804 URL:http://secunia.com/advisories/26804 MISC:26852 URL:http://secunia.com/advisories/26852 MISC:26882 URL:http://secunia.com/advisories/26882 MISC:27996 URL:http://secunia.com/advisories/27996 MISC:28021 URL:http://secunia.com/advisories/28021 MISC:ADV-2007-2733 URL:~~http://www.vupen.com/english/advisories/2007/2733~~ (Obsolete source) MISC:DSA-1426 URL:http://www.debian.org/security/2007/dsa-1426 MISC:FEDORA-2007-2216 URL:http://fedoranews.org/updates/FEDORA-2007-221.shtml MISC:FEDORA-2007-703 URL:http://fedoranews.org/updates/FEDORA-2007-703.shtml MISC:GLSA-200708-16 URL:http://www.gentoo.org/security/en/glsa/glsa-200708-16.xml MISC:GLSA-200710-28 URL:http://www.gentoo.org/security/en/glsa/glsa-200710-28.xml MISC:GLSA-200712-08 URL:http://security.gentoo.org/glsa/glsa-200712-08.xml MISC:MDKSA-2007:151 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2007:151~~ (Obsolete source) MISC:RHSA-2007:0721 URL:http://www.redhat.com/support/errata/RHSA-2007-0721.html MISC:SSA:2007-222-03 URL:http://www.slackware.org/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.354168 MISC:SUSE-SA:2007:048 URL:http://www.novell.com/linux/security/advisories/2007_48_qt3.html MISC:USN-495-1 URL:http://www.ubuntu.com/usn/usn-495-1 MISC:http://bugs.gentoo.org/show_bug.cgi?id=185446 URL:http://bugs.gentoo.org/show_bug.cgi?id=185446 MISC:http://dist.trolltech.com/developer/download/170529.diff URL:http://dist.trolltech.com/developer/download/170529.diff MISC:http://support.avaya.com/elmodocs2/security/ASA-2007-388.htm URL:http://support.avaya.com/elmodocs2/security/ASA-2007-388.htm MISC:http://trolltech.com/company/newsroom/announcements/press.2007-07-27.7503755960 URL:http://trolltech.com/company/newsroom/announcements/press.2007-07-27.7503755960 MISC:https://issues.rpath.com/browse/RPL-1597 URL:https://issues.rpath.com/browse/RPL-1597 MISC:oval:org.mitre.oval:def:9690 URL:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9690
Assigning CNA
Red Hat, Inc.
Date Record Created
20070625	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20070625)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)