Lucene search

K

Japan Vulnerability NotesJVN:88935101

HistoryJun 10, 2008 - 12:00 a.m.

JVN#88935101: X.Org Foundation X server buffer overflow vulnerability

2008-06-1000:00:00

Japan Vulnerability Notes

jvn.jp

14

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.459 Medium

EPSS

Percentile

97.4%

The X.Org Foundation provides an open source implementation of the X Window System. The X server of this implementation contains a vulnerability in the handling of Portable Compiled Font (PCF) format fonts that can be exploited to cause a buffer overflow.

Impact

An attacker with an established, authenticated connection to the X server could execute arbitrary code with the privilege of X server process or cause the server to crash.

Solution

Update the Software
Apply the latest updates provided by the vendors.

Products Affected

For more information, refer to each vendor’s website.

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.459 Medium

EPSS

Percentile

97.4%

Related for JVN:88935101

openvas44 nessus37 checkpoint_advisories1 oraclelinux3 debiancve1 veracode1 cert1 fedora4 centos4 cve1 prion1 redhat3 ubuntucve1 altlinux1 suse1 debian2 securityvulns2 ubuntu2 freebsd1 osv1 gentoo1