CVE - CVE-2007-5937

CVE-ID
CVE-2007-5937	Learn more at National Vulnerability Database (NVD) • CVSS Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings • CPE Information
Description
Multiple buffer overflows in dvi2xx.c in dviljk in teTeX and TeXlive 2007 and earlier might allow user-assisted attackers to execute arbitrary code via a crafted DVI input file.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
BID:26469 URL:http://www.securityfocus.com/bid/26469 BUGTRAQ:20080212 FLEA-2008-0006-1 tetex tetex-dvips tetex-fonts URL:http://www.securityfocus.com/archive/1/487984/100/0/threaded CONFIRM:http://bugs.gentoo.org/show_bug.cgi?id=198238 CONFIRM:http://wiki.rpath.com/wiki/Advisories:rPSA-2007-0266 CONFIRM:https://bugzilla.redhat.com/show_bug.cgi?id=368641 CONFIRM:https://issues.rpath.com/browse/RPL-1928 FEDORA:FEDORA-2007-3390 URL:https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00663.html GENTOO:GLSA-200711-26 URL:http://security.gentoo.org/glsa/glsa-200711-26.xml GENTOO:GLSA-200711-34 URL:http://security.gentoo.org/glsa/glsa-200711-34.xml GENTOO:GLSA-200805-13 URL:http://security.gentoo.org/glsa/glsa-200805-13.xml MANDRIVA:MDKSA-2007:230 URL:~~http://www.mandriva.com/security/advisories?name=MDKSA-2007:230~~ (Obsolete source) MISC:http://bugs.gentoo.org/attachment.cgi?id=135423 SECTRACK:1019058 URL:http://www.securitytracker.com/id?1019058 SECUNIA:27672 URL:http://secunia.com/advisories/27672 SECUNIA:27686 URL:http://secunia.com/advisories/27686 SECUNIA:27718 URL:http://secunia.com/advisories/27718 SECUNIA:27743 URL:http://secunia.com/advisories/27743 SECUNIA:27967 URL:http://secunia.com/advisories/27967 SECUNIA:28107 URL:http://secunia.com/advisories/28107 SECUNIA:28412 URL:http://secunia.com/advisories/28412 SECUNIA:30168 URL:http://secunia.com/advisories/30168 SUSE:SUSE-SR:2008:001 URL:http://lists.opensuse.org/opensuse-security-announce/2008-01/msg00002.html SUSE:SUSE-SR:2008:011 URL:http://lists.opensuse.org/opensuse-security-announce/2008-05/msg00000.html UBUNTU:USN-554-1 URL:https://usn.ubuntu.com/554-1/ VUPEN:ADV-2007-3896 URL:~~http://www.vupen.com/english/advisories/2007/3896~~ (Obsolete source)
Assigning CNA
MITRE Corporation
Date Record Created
20071113	Disclaimer: The record creation date may reflect when the CVE ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20071113)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an record on the CVE List, which provides common identifiers for publicly known cybersecurity vulnerabilities.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: CVE Request Web Form (select "Other" from dropdown)