CVE-2007-5760
xorg-server - multiple vulnerabilities
EPSS 4.4%
Description
Array index error in the XFree86-Misc extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to execute arbitrary code via a PassMessage request containing a large array index.
How to fix CVE-2007-5760
To remediate CVE-2007-5760, upgrade the affected package to a fixed version below.
- Debian/xfree86—upgrade to 4.3.0.dfsg.1-14sarge7 or later
- Debian/xorg-server—upgrade to 2:1.4.1~git20080105-2 or later
- Debian/xorg-server—upgrade to 2:1.1.1-21etch3 or later
- —upgrade to 2:1.3.0.0.dfsg-12lenny2 or later
Is CVE-2007-5760 being exploited?
Low — EPSS is 4.4%, meaning exploitation activity has not been observed at scale.
Affected packages (4)
- from 0, < 4.3.0.dfsg.1-14sarge7
- from 0, < 2:1.4.1~git20080105-2
- from 0, < 2:1.1.1-21etch3
- from 0, < 2:1.3.0.0.dfsg-12lenny2