CVE-2013-2066

Published Jun 15, 2013

Last updated 11 years ago

CVSS info 6.8

Overview

Description: Buffer overflow in X.org libXv 1.0.7 and earlier allows X servers to cause a denial of service (crash) and possibly execute arbitrary code via crafted length or index values to the XvQueryPortAttributes function.
Source: secalert@redhat.com
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.8
Impact score: 6.4
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-119

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:x:libxv:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "73DD3E1D-A540-493E-AC03-5AF562121106",
            "versionEndIncluding": "1.0.7"
          },
          {
            "criteria": "cpe:2.3:a:x:libxv:1.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "738DF3FA-3C69-4C60-B5F2-F6D32CD3630D"
          },
          {
            "criteria": "cpe:2.3:a:x:libxv:1.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9EBFC510-E847-4C9A-8E99-3540A798F6B8"
          },
          {
            "criteria": "cpe:2.3:a:x:libxv:1.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "34B9A08A-1C29-49AB-BFB2-F1A57D05F1E5"
          },
          {
            "criteria": "cpe:2.3:a:x:libxv:1.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "566DCAE9-3FAA-4F5D-88A6-D06004B5B47B"
          },
          {
            "criteria": "cpe:2.3:a:x:libxv:1.0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B5BB54F7-5768-45B8-A8EB-8ED44D5E1588"
          },
          {
            "criteria": "cpe:2.3:a:x.org:libxv:1.0.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "711EAB64-279B-4EB1-B5DF-751AA47A842E"
          },
          {
            "criteria": "cpe:2.3:a:x.org:libxv:1.0.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F10B87F0-7A58-45AC-9621-E9AEA6ECD9BC"
          },
          {
            "criteria": "cpe:2.3:a:x.org:libxv:1.0.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "098A760A-872F-49E0-A3F0-C8875433223E"
          },
          {
            "criteria": "cpe:2.3:a:x.org:libxv:1.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "381E664B-DDBA-445F-A4CC-B5C397CD89BF"
          },
          {
            "criteria": "cpe:2.3:a:x.org:libxv:1.0.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "18E98D4E-961B-4F31-A254-732B261F026E"
          },
          {
            "criteria": "cpe:2.3:a:x.org:libxv:1.0.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BEB33A37-C847-4812-8735-03E7C3D28CBB"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References