CVE-2007-6183 - OpenCVE

Format string vulnerability in the mdiag_initialize function in gtk/src/rbgtkmessagedialog.c in Ruby-GNOME 2 (aka Ruby/Gnome2) 0.16.0, and SVN versions before 20071127, allows context-dependent attackers to execute arbitrary code via format string specifiers in the message parameter.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:M/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Ruby Gnome2	Ruby Gnome2

Configuration 1 [-]

cpe:2.3:a:ruby_gnome2:ruby_gnome2:0.16.0:*:*:*:*:*:*:*

References

Link	Resource
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=453689
http://bugs.gentoo.org/show_bug.cgi?id=200623
http://em386.blogspot.com/2007/11/your-favorite-better-than-c-scripting.html
http://osvdb.org/40774
http://ruby-gnome2.svn.sourceforge.net/viewvc/ruby-gnome2/ruby-gnome2/trunk/gtk/src/rbgtkmessagedialog.c?view=log	Exploit
http://secunia.com/advisories/27825
http://secunia.com/advisories/27975
http://secunia.com/advisories/28022
http://secunia.com/advisories/28060
http://security.gentoo.org/glsa/glsa-200712-09.xml
http://securityreason.com/securityalert/3407
http://www.debian.org/security/2007/dsa-1431
http://www.mandriva.com/security/advisories?name=MDVSA-2008:033
http://www.securityfocus.com/archive/1/484240/100/0/threaded
http://www.securityfocus.com/bid/26616
http://www.vupen.com/english/advisories/2007/4022
https://bugzilla.redhat.com/show_bug.cgi?id=402871
https://exchange.xforce.ibmcloud.com/vulnerabilities/38757
https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00214.html
https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00251.html

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2007-11-30T00:00:00

Updated: 2018-10-15T20:57:01

Reserved: 2007-11-29T00:00:00

Link: CVE-2007-6183

JSON object: View

NVD Information

Status : Modified

Published: 2007-11-30T00:46:00.000

Modified: 2018-10-15T21:50:45.980

Link: CVE-2007-6183

JSON object: View

Redhat Information

No data.

CWE

CWE-134

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-11-27T00:00:00", "descriptions": [{"lang": "en", "value": "Format string vulnerability in the mdiag_initialize function in gtk/src/rbgtkmessagedialog.c in Ruby-GNOME 2 (aka Ruby/Gnome2) 0.16.0, and SVN versions before 20071127, allows context-dependent attackers to execute arbitrary code via format string specifiers in the message parameter."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-15T20:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "GLSA-200712-09", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://security.gentoo.org/glsa/glsa-200712-09.xml"}, {"name": "27825", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/27825"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://ruby-gnome2.svn.sourceforge.net/viewvc/ruby-gnome2/ruby-gnome2/trunk/gtk/src/rbgtkmessagedialog.c?view=log"}, {"name": "28022", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/28022"}, {"name": "26616", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/26616"}, {"name": "20071127 Ruby/Gnome2 0.16.0 Format String Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/484240/100/0/threaded"}, {"name": "FEDORA-2007-4216", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00214.html"}, {"tags": ["x_refsource_MISC"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=402871"}, {"name": "3407", "tags": ["third-party-advisory", "x_refsource_SREASON"], "url": "http://securityreason.com/securityalert/3407"}, {"name": "ADV-2007-4022", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/4022"}, {"name": "FEDORA-2007-4229", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00251.html"}, {"name": "27975", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/27975"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://bugs.gentoo.org/show_bug.cgi?id=200623"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=453689"}, {"name": "28060", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/28060"}, {"name": "40774", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/40774"}, {"name": "DSA-1431", "tags": ["vendor-advisory", "x_refsource_DEBIAN"], "url": "http://www.debian.org/security/2007/dsa-1431"}, {"tags": ["x_refsource_MISC"], "url": "http://em386.blogspot.com/2007/11/your-favorite-better-than-c-scripting.html"}, {"name": "MDVSA-2008:033", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:033"}, {"name": "rubygnome2-mdiaginitialize-format-string(38757)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38757"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-6183", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Format string vulnerability in the mdiag_initialize function in gtk/src/rbgtkmessagedialog.c in Ruby-GNOME 2 (aka Ruby/Gnome2) 0.16.0, and SVN versions before 20071127, allows context-dependent attackers to execute arbitrary code via format string specifiers in the message parameter."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "GLSA-200712-09", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-200712-09.xml"}, {"name": "27825", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/27825"}, {"name": "http://ruby-gnome2.svn.sourceforge.net/viewvc/ruby-gnome2/ruby-gnome2/trunk/gtk/src/rbgtkmessagedialog.c?view=log", "refsource": "CONFIRM", "url": "http://ruby-gnome2.svn.sourceforge.net/viewvc/ruby-gnome2/ruby-gnome2/trunk/gtk/src/rbgtkmessagedialog.c?view=log"}, {"name": "28022", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/28022"}, {"name": "26616", "refsource": "BID", "url": "http://www.securityfocus.com/bid/26616"}, {"name": "20071127 Ruby/Gnome2 0.16.0 Format String Vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/484240/100/0/threaded"}, {"name": "FEDORA-2007-4216", "refsource": "FEDORA", "url": "https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00214.html"}, {"name": "https://bugzilla.redhat.com/show_bug.cgi?id=402871", "refsource": "MISC", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=402871"}, {"name": "3407", "refsource": "SREASON", "url": "http://securityreason.com/securityalert/3407"}, {"name": "ADV-2007-4022", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/4022"}, {"name": "FEDORA-2007-4229", "refsource": "FEDORA", "url": "https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00251.html"}, {"name": "27975", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/27975"}, {"name": "http://bugs.gentoo.org/show_bug.cgi?id=200623", "refsource": "CONFIRM", "url": "http://bugs.gentoo.org/show_bug.cgi?id=200623"}, {"name": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=453689", "refsource": "CONFIRM", "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=453689"}, {"name": "28060", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/28060"}, {"name": "40774", "refsource": "OSVDB", "url": "http://osvdb.org/40774"}, {"name": "DSA-1431", "refsource": "DEBIAN", "url": "http://www.debian.org/security/2007/dsa-1431"}, {"name": "http://em386.blogspot.com/2007/11/your-favorite-better-than-c-scripting.html", "refsource": "MISC", "url": "http://em386.blogspot.com/2007/11/your-favorite-better-than-c-scripting.html"}, {"name": "MDVSA-2008:033", "refsource": "MANDRIVA", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:033"}, {"name": "rubygnome2-mdiaginitialize-format-string(38757)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38757"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-6183", "datePublished": "2007-11-30T00:00:00", "dateReserved": "2007-11-29T00:00:00", "dateUpdated": "2018-10-15T20:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ruby_gnome2:ruby_gnome2:0.16.0:*:*:*:*:*:*:*", "matchCriteriaId": "EE19EE95-B3B9-4365-A931-0C399EA733BB", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Format string vulnerability in the mdiag_initialize function in gtk/src/rbgtkmessagedialog.c in Ruby-GNOME 2 (aka Ruby/Gnome2) 0.16.0, and SVN versions before 20071127, allows context-dependent attackers to execute arbitrary code via format string specifiers in the message parameter."}, {"lang": "es", "value": "Vulnerabilidad de cadena de formato en la funci\u00f3n mdiag_initialize de gtk/src/rbgtkmessagedialog.c de Ruby-GNOME 2 (tambi\u00e9n conocido como Ruby/Gnome2) 0.16.0, y versiones de SVN anteriores al 27/11/2007, permite a atacantes locales o remotos (dependiendo del contexto) ejecutar c\u00f3digo de su elecci\u00f3n mediante especificadores de cadena de formato en el par\u00e1metro message."}], "id": "CVE-2007-6183", "lastModified": "2018-10-15T21:50:45.980", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 6.8, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-11-30T00:46:00.000", "references": [{"source": "cve@mitre.org", "url": "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=453689"}, {"source": "cve@mitre.org", "url": "http://bugs.gentoo.org/show_bug.cgi?id=200623"}, {"source": "cve@mitre.org", "url": "http://em386.blogspot.com/2007/11/your-favorite-better-than-c-scripting.html"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/40774"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://ruby-gnome2.svn.sourceforge.net/viewvc/ruby-gnome2/ruby-gnome2/trunk/gtk/src/rbgtkmessagedialog.c?view=log"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/27825"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/27975"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/28022"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/28060"}, {"source": "cve@mitre.org", "url": "http://security.gentoo.org/glsa/glsa-200712-09.xml"}, {"source": "cve@mitre.org", "url": "http://securityreason.com/securityalert/3407"}, {"source": "cve@mitre.org", "url": "http://www.debian.org/security/2007/dsa-1431"}, {"source": "cve@mitre.org", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2008:033"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/484240/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/26616"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2007/4022"}, {"source": "cve@mitre.org", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=402871"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38757"}, {"source": "cve@mitre.org", "url": "https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00214.html"}, {"source": "cve@mitre.org", "url": "https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00251.html"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-134"}], "source": "nvd@nist.gov", "type": "Primary"}]}