Vulnerability Details : CVE-2007-1220

The Hypervisor in Microsoft Xbox 360 kernel 4532 and 4548 does not properly verify the parameters passed to the syscall dispatcher, which allows attackers with physical access to bypass code-signing requirements and execute arbitrary code.

Vulnerability category: Execute code

Published 2007-03-02 22:19:00

Updated 2018-10-16 16:37:18

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2007-1220

Probability of exploitation activity in the next 30 days: 0.35%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 68 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2007-1220

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
6.2	MEDIUM	AV:L/AC:H/Au:N/C:C/I:C/A:C	1.9	10.0	[email protected]
Access Vector: Local Access Complexity: High Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

References for CVE-2007-1220

Products affected by CVE-2007-1220

Microsoft » Xbox 360 » Version: 4532
cpe:2.3:h:microsoft:xbox_360:4532:*:*:*:*:*:*:*
Matching versions
When used together with: Microsoft » Xbox 360
Microsoft » Xbox 360 » Version: 4548
cpe:2.3:h:microsoft:xbox_360:4548:*:*:*:*:*:*:*
Matching versions
When used together with: Microsoft » Xbox 360