Vulnerability Details CVE-2007-6532
Double free vulnerability in the Widget Library (libxfcegui4) in Xfce before 4.4.2 might allow remote attackers to execute arbitrary code via unknown vectors related to the "cliend id, program name and working directory in session management."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.031
EPSS Ranking 86.1%
CVSS Severity
CVSS v2 Score 10.0
References
- http://bugs.gentoo.org/show_bug.cgi?id=201292
- http://security.gentoo.org/glsa/glsa-200801-06.xml
- http://www.vupen.com/english/advisories/2008/0080
- http://www.xfce.org/documentation/changelogs/4.4.2
- http://bugs.gentoo.org/show_bug.cgi?id=201292
- http://security.gentoo.org/glsa/glsa-200801-06.xml
- http://www.vupen.com/english/advisories/2008/0080
- http://www.xfce.org/documentation/changelogs/4.4.2