Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSD3837F462-5D6B-11D8-80E3-0020ED76EF5A
HistoryFeb 10, 2004 - 12:00 a.m.

Buffer overflows in XFree86 servers

2004-02-1000:00:00
vuxml.freebsd.org
7

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.121 Low

EPSS

Percentile

95.3%

JSON

A number of buffer overflows were recently discovered in
XFree86, prompted by initial discoveries by iDEFENSE. These
buffer overflows are present in the font alias handling. An
attacker with authenticated access to a running X server may
exploit these vulnerabilities to obtain root privileges on
the machine running the X server.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchxfree86-server<= 4.3.0_13UNKNOWN

Related

nessus 11
securityvulns 3
redhat 2
ubuntucve 3
cve 3
openvas 12
slackware 1
suse 1
osv 1
debian 1
freebsd 1
cert 2
gentoo 1
nessus
nessus
RHEL 3 : XFree86 (RHSA-2004:061)
2004-07-06 00:00:00
SuSE-SA:2004:006: xf86/XFree86
2004-07-25 00:00:00
RHEL 2.1 : XFree86 (RHSA-2004:060)
2004-07-06 00:00:00
securityvulns
securityvulns
UnixWare 7.1.3 Open UNIX 8.0.0 : Xsco contains a buffer overflow that could be exploited to gain root privileges.
2004-08-02 00:00:00
OpenServer 5.0.6 OpenServer 5.0.7 : Xsco contains a buffer overflow that could be exploited to gain root privileges.
2004-08-02 00:00:00
iDEFENSESecurityAdvisory02.10.04: XFree86FontInformationFileBufferOverflow
2004-02-11 00:00:00
redhat
redhat
(RHSA-2004:061) XFree86 security update
2004-02-16 00:00:00
(RHSA-2004:060) XFree86 security update
2004-02-13 00:00:00
ubuntucve
ubuntucve
CVE-2004-0083
2004-03-03 00:00:00
CVE-2004-0084
2004-03-03 00:00:00
CVE-2004-0106
2004-03-03 00:00:00
cve
cve
CVE-2004-0083
2004-03-03 05:00:00
CVE-2004-0106
2004-03-03 05:00:00
CVE-2004-0084
2004-03-03 05:00:00
openvas
openvas
FreeBSD Ports: XFree86-Server
2008-09-04 00:00:00
Slackware Advisory SSA:2004-043-02 XFree86 security update
2012-09-11 00:00:00
Slackware: Security Advisory (SSA:2004-043-02)
2012-09-10 00:00:00
slackware
slackware
XFree86 security update
2004-02-12 12:19:25
suse
suse
local privilege escalation in xf86/XFree86
2004-02-23 16:37:48
osv
osv
xfree86 - several vulnerabilities
2004-02-19 00:00:00
debian
debian
[SECURITY] [DSA 443-1] New xfree86 packages fix multiple vulnerabilities
2004-02-20 06:58:37
freebsd
freebsd
linux_base -- vulnerabilities in Red Hat 7.1 libraries
2004-09-27 00:00:00
cert
cert
XFree86 vulnerable to buffer overflow via crafted font directory in 'fonts.alias' file
2004-12-07 00:00:00
XFree86 vulnerable to buffer overflow via error in 'ReadFontAlias()' function
2004-12-07 00:00:00
gentoo
gentoo
XFree86 Font Information File Buffer Overflow
2004-02-11 00:00:00

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.121 Low

EPSS

Percentile

95.3%

JSON
Related for 3837F462-5D6B-11D8-80E3-0020ED76EF5A
nessus11securityvulns3redhat2ubuntucve3cve3openvas12slackware1suse1osv1debian1freebsd1cert2gentoo1