Search for vulnerabilities
Vulnerability details: VCID-cmwh-xvfg-aaaj
Vulnerability ID VCID-cmwh-xvfg-aaaj
Aliases CVE-2007-0254
Summary Format string vulnerability in the errors_create_window function in errors.c in xine-ui allows attackers to execute arbitrary code via unknown vectors.
Status Published
Exploitability 0.5
Weighted Severity 9.0
Risk 4.5
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02205 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02437 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02437 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02437 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02437 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02437 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02437 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02437 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02437 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02437 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02437 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02437 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02437 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02437 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02437 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02437 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.02437 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
epss 0.05717 https://api.first.org/data/v1/epss?cve=CVE-2007-0254
cvssv2 10.0 https://nvd.nist.gov/vuln/detail/CVE-2007-0254
Reference id Reference type URL
http://osvdb.org/31594
https://api.first.org/data/v1/epss?cve=CVE-2007-0254
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-0254
http://secunia.com/advisories/23709
http://secunia.com/advisories/23891
http://secunia.com/advisories/23931
http://security.gentoo.org/glsa/glsa-200701-18.xml
https://exchange.xforce.ibmcloud.com/vulnerabilities/31505
http://www.mandriva.com/security/advisories?name=MDKSA-2007:027
http://www.mandriva.com/security/advisories?name=MDKSA-2007:154
http://www.securityfocus.com/archive/1/456590/100/0/threaded
http://www.securityfocus.com/bid/22002
407369 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=407369
cpe:2.3:a:xine:xine-ui:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:xine:xine-ui:*:*:*:*:*:*:*:*
CVE-2007-0254 https://nvd.nist.gov/vuln/detail/CVE-2007-0254
GLSA-200701-18 https://security.gentoo.org/glsa/200701-18
No exploits are available.
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C Found at https://nvd.nist.gov/vuln/detail/CVE-2007-0254
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.82972
EPSS Score 0.02205
Published At March 28, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
There are no relevant records.