Lucene search

[email protected]CVE-2006-0197

HistoryJan 13, 2006 - 11:03 p.m.

CVE-2006-0197

2006-01-1323:03:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

xclientmessageevent

x.org

denial of service

security vulnerability

cve-2006-0197

7.4 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.004 Low

EPSS

Percentile

71.9%

JSON

The XClientMessageEvent struct used in certain components of X.Org 6.8.2 and earlier, possibly including (1) the X server and (2) Xlib, uses a “long” specifier for elements of the l array, which results in inconsistent sizes in the struct on 32-bit versus 64-bit platforms, and might allow attackers to cause a denial of service (application crash) and possibly conduct other attacks.

CPENameOperatorVersion
x.org:x.orgx.orgle6.8.2

CPE	Name	Operator	Version
x.org:x.org	x.org	le	6.8.2

References

www.securityfocus.com/archive/1/421256/100/0/threaded

7.4 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.004 Low

EPSS

Percentile

71.9%

JSON

Related for CVE-2006-0197

prion1