Executive Summary

Informations
Name CVE-2007-4137 First vendor Publication 2007-09-18
Vendor Cve Last vendor Modification 2023-11-07

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score 7.5 Attack Range Network
Cvss Impact Score 6.4 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Off-by-one error in the QUtf8Decoder::toUnicode function in Trolltech Qt 3 allows context-dependent attackers to cause a denial of service (crash) via a crafted Unicode string that triggers a heap-based buffer overflow. NOTE: Qt 4 has the same error in the QUtf8Codec::convertToUnicode function, but it is not exploitable.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4137

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:11159
 
Oval ID: oval:org.mitre.oval:def:11159
Title: Off-by-one error in the QUtf8Decoder::toUnicode function in Trolltech Qt 3 allows context-dependent attackers to cause a denial of service (crash) via a crafted Unicode string that triggers a heap-based buffer overflow. NOTE: Qt 4 has the same error in the QUtf8Codec::convertToUnicode function, but it is not exploitable.
Description: Off-by-one error in the QUtf8Decoder::toUnicode function in Trolltech Qt 3 allows context-dependent attackers to cause a denial of service (crash) via a crafted Unicode string that triggers a heap-based buffer overflow. NOTE: Qt 4 has the same error in the QUtf8Codec::convertToUnicode function, but it is not exploitable.
Family: unix Class: vulnerability
Reference(s): CVE-2007-4137
Version: 5
Platform(s): Red Hat Enterprise Linux 3
CentOS Linux 3
Red Hat Enterprise Linux 4
CentOS Linux 4
Oracle Linux 4
Red Hat Enterprise Linux 5
CentOS Linux 5
Oracle Linux 5
Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:17295
 
Oval ID: oval:org.mitre.oval:def:17295
Title: USN-513-1 -- qt-x11-free vulnerability
Description: Dirk Mueller discovered that UTF8 strings could be made to cause a small buffer overflow.
Family: unix Class: patch
Reference(s): USN-513-1
CVE-2007-4137
Version: 5
Platform(s): Ubuntu 6.06
Ubuntu 6.10
Ubuntu 7.04
Product(s): qt-x11-free
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:20432
 
Oval ID: oval:org.mitre.oval:def:20432
Title: DSA-1426-1 qt-x11-free - several vulnerabilities
Description: Several local/remote vulnerabilities have been discovered in the Qt GUI library.
Family: unix Class: patch
Reference(s): DSA-1426-1
CVE-2007-3388
CVE-2007-4137
Version: 5
Platform(s): Debian GNU/Linux 4.0
Product(s): qt-x11-free
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:22579
 
Oval ID: oval:org.mitre.oval:def:22579
Title: ELSA-2007:0883: qt security update (Important)
Description: Off-by-one error in the QUtf8Decoder::toUnicode function in Trolltech Qt 3 allows context-dependent attackers to cause a denial of service (crash) via a crafted Unicode string that triggers a heap-based buffer overflow. NOTE: Qt 4 has the same error in the QUtf8Codec::convertToUnicode function, but it is not exploitable.
Family: unix Class: patch
Reference(s): ELSA-2007:0883-02
CVE-2007-0242
CVE-2007-4137
Version: 13
Platform(s): Oracle Linux 5
Product(s): qt
Definition Synopsis:

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 23

OpenVAS Exploits

Date Description
2009-04-09 Name : Mandriva Update for qt MDKSA-2007:183 (qt)
File : nvt/gb_mandriva_MDKSA_2007_183.nasl
2009-03-23 Name : Ubuntu Update for qt-x11-free vulnerability USN-513-1
File : nvt/gb_ubuntu_USN_513_1.nasl
2009-02-27 Name : Fedora Update for qt FEDORA-2007-2216
File : nvt/gb_fedora_2007_2216_qt_fc7.nasl
2009-02-27 Name : Fedora Update for qt FEDORA-2007-703
File : nvt/gb_fedora_2007_703_qt_fc6.nasl
2008-09-24 Name : Gentoo Security Advisory GLSA 200710-28 (qt)
File : nvt/glsa_200710_28.nasl
2008-09-24 Name : Gentoo Security Advisory GLSA 200712-08 (emul-linux-x86-qtlibs)
File : nvt/glsa_200712_08.nasl
2008-01-17 Name : Debian Security Advisory DSA 1426-1 (qt-x11-free)
File : nvt/deb_1426_1.nasl

Open Source Vulnerability Database (OSVDB)

Id Description
39384 Qt QUtf8Decoder::toUnicode Function Off-By-One

Nessus® Vulnerability Scanner

Date Description
2013-07-12 Name : The remote Oracle Linux host is missing one or more security updates.
File : oraclelinux_ELSA-2007-0883.nasl - Type : ACT_GATHER_INFO
2012-08-01 Name : The remote Scientific Linux host is missing one or more security updates.
File : sl_20070913_qt_on_SL5_x.nasl - Type : ACT_GATHER_INFO
2009-09-24 Name : The remote SuSE 9 host is missing a security-related patch.
File : suse9_11795.nasl - Type : ACT_GATHER_INFO
2007-12-13 Name : The remote SuSE 10 host is missing a security-related patch.
File : suse_qt3-4420.nasl - Type : ACT_GATHER_INFO
2007-12-11 Name : The remote Debian host is missing a security-related update.
File : debian_DSA-1426.nasl - Type : ACT_GATHER_INFO
2007-12-11 Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200712-08.nasl - Type : ACT_GATHER_INFO
2007-11-10 Name : The remote Ubuntu host is missing one or more security-related patches.
File : ubuntu_USN-513-1.nasl - Type : ACT_GATHER_INFO
2007-11-06 Name : The remote Fedora host is missing a security update.
File : fedora_2007-2216.nasl - Type : ACT_GATHER_INFO
2007-10-26 Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-200710-28.nasl - Type : ACT_GATHER_INFO
2007-10-17 Name : The remote openSUSE host is missing a security update.
File : suse_qt3-4421.nasl - Type : ACT_GATHER_INFO
2007-09-24 Name : The remote Fedora Core host is missing a security update.
File : fedora_2007-703.nasl - Type : ACT_GATHER_INFO
2007-09-14 Name : The remote CentOS host is missing one or more security updates.
File : centos_RHSA-2007-0883.nasl - Type : ACT_GATHER_INFO
2007-09-14 Name : The remote Mandrake Linux host is missing one or more security updates.
File : mandrake_MDKSA-2007-183.nasl - Type : ACT_GATHER_INFO
2007-09-14 Name : The remote Red Hat host is missing one or more security updates.
File : redhat-RHSA-2007-0883.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source Url
BID http://www.securityfocus.com/bid/25657
BUGTRAQ http://www.securityfocus.com/archive/1/481498/100/0/threaded
CONFIRM http://bugs.gentoo.org/show_bug.cgi?id=192472
http://support.avaya.com/elmodocs2/security/ASA-2007-424.htm
http://trolltech.com/company/newsroom/announcements/press.2007-09-03.7564032119
https://issues.rpath.com/browse/RPL-1751
DEBIAN http://www.debian.org/security/2007/dsa-1426
FEDORA http://fedoranews.org/updates/FEDORA-2007-221.shtml
http://fedoranews.org/updates/FEDORA-2007-703.shtml
GENTOO http://security.gentoo.org/glsa/glsa-200710-28.xml
http://security.gentoo.org/glsa/glsa-200712-08.xml
MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:183
MISC http://dist.trolltech.com/developer/download/175791_3.diff
http://dist.trolltech.com/developer/download/175791_4.diff
https://bugzilla.redhat.com/show_bug.cgi?id=269001
OSVDB http://osvdb.org/39384
OVAL https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...
REDHAT http://www.redhat.com/support/errata/RHSA-2007-0883.html
SECTRACK http://securitytracker.com/id?1018688
SECUNIA http://secunia.com/advisories/26778
http://secunia.com/advisories/26782
http://secunia.com/advisories/26804
http://secunia.com/advisories/26811
http://secunia.com/advisories/26857
http://secunia.com/advisories/26868
http://secunia.com/advisories/26882
http://secunia.com/advisories/26987
http://secunia.com/advisories/27053
http://secunia.com/advisories/27275
http://secunia.com/advisories/27382
http://secunia.com/advisories/27996
http://secunia.com/advisories/28021
SGI ftp://patches.sgi.com/support/free/security/advisories/20070901-01-P.asc
SUSE http://www.novell.com/linux/security/advisories/2007_19_sr.html
UBUNTU http://www.ubuntu.com/usn/usn-513-1
VUPEN http://www.vupen.com/english/advisories/2007/3144

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
Date Informations
2023-11-07 21:47:55
  • Multiple Updates
2023-02-13 09:29:26
  • Multiple Updates
2023-02-02 21:28:59
  • Multiple Updates
2020-05-23 00:20:14
  • Multiple Updates
2018-10-16 00:19:11
  • Multiple Updates
2017-09-29 09:23:10
  • Multiple Updates
2016-06-28 16:47:58
  • Multiple Updates
2016-04-26 16:26:45
  • Multiple Updates
2014-02-17 10:41:11
  • Multiple Updates
2013-05-11 10:33:26
  • Multiple Updates