FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

xfce -- multiple vulnerabilities

Affected packages
libxfce4gui < 4.4.2
xfce4-panel < 4.4.2

Details

VuXML ID 024edd06-c933-11dc-810c-0016179b2dd5
Discovery 2008-01-09
Entry 2008-01-22
Modified 2008-02-13

Gentoo reports:

A remote attacker could entice a user to install a specially crafted "rc" file to execute arbitrary code via long strings in the "Name" and "Comment" fields or via unspecified vectors involving the second vulnerability.

References

CVE Name CVE-2007-6531
CVE Name CVE-2007-6532
URL http://www.gentoo.org/security/en/glsa/glsa-200801-06.xml
URL http://www.xfce.org/documentation/changelogs/4.4.2