Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2004-0083
HistoryMar 03, 2004 - 5:00 a.m.

CVE-2004-0083

2004-03-0305:00:00
[email protected]
web.nvd.nist.gov
7

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.3

Confidence

Low

EPSS

0.102

Percentile

95.0%

JSON

Buffer overflow in ReadFontAlias from dirfile.c of XFree86 4.1.0 through 4.3.0 allows local users and remote attackers to execute arbitrary code via a font alias file (font.alias) with a long token, a different vulnerability than CVE-2004-0084 and CVE-2004-0106.

Affected configurations

Nvd
Node
xfree86_projectx11r6Match4.1.0
OR
xfree86_projectx11r6Match4.1.11
OR
xfree86_projectx11r6Match4.1.12
OR
xfree86_projectx11r6Match4.2.0
OR
xfree86_projectx11r6Match4.2.1
OR
xfree86_projectx11r6Match4.2.1errata
OR
xfree86_projectx11r6Match4.3.0
Node
openbsdopenbsdMatch3.3
OR
openbsdopenbsdMatch3.4
VendorProductVersionCPE
xfree86_projectx11r64.1.0cpe:2.3:a:xfree86_project:x11r6:4.1.0:*:*:*:*:*:*:*
xfree86_projectx11r64.1.11cpe:2.3:a:xfree86_project:x11r6:4.1.11:*:*:*:*:*:*:*
xfree86_projectx11r64.1.12cpe:2.3:a:xfree86_project:x11r6:4.1.12:*:*:*:*:*:*:*
xfree86_projectx11r64.2.0cpe:2.3:a:xfree86_project:x11r6:4.2.0:*:*:*:*:*:*:*
xfree86_projectx11r64.2.1cpe:2.3:a:xfree86_project:x11r6:4.2.1:*:*:*:*:*:*:*
xfree86_projectx11r64.2.1cpe:2.3:a:xfree86_project:x11r6:4.2.1:*:errata:*:*:*:*:*
xfree86_projectx11r64.3.0cpe:2.3:a:xfree86_project:x11r6:4.3.0:*:*:*:*:*:*:*
openbsdopenbsd3.3cpe:2.3:o:openbsd:openbsd:3.3:*:*:*:*:*:*:*
openbsdopenbsd3.4cpe:2.3:o:openbsd:openbsd:3.4:*:*:*:*:*:*:*

References

Related

redhat 2
ubuntucve 3
slackware 1
cvelist 3
openvas 12
nvd 2
nessus 11
cve 3
securityvulns 3
freebsd 2
suse 1
osv 1
gentoo 1
cert 2
exploitdb 2
debian 1
redhat
redhat
(RHSA-2004:060) XFree86 security update
2004-02-13 00:00:00
(RHSA-2004:061) XFree86 security update
2004-02-16 00:00:00
ubuntucve
ubuntucve
CVE-2004-0106
2004-03-03 00:00:00
CVE-2004-0084
2004-03-03 00:00:00
CVE-2004-0083
2004-03-03 00:00:00
slackware
slackware
XFree86 security update
2004-02-12 12:19:25
cvelist
cvelist
CVE-2004-0084
2004-02-14 05:00:00
CVE-2004-0106
2004-02-16 05:00:00
CVE-2004-0083
2004-02-14 05:00:00
openvas
openvas
HP-UX Update for XFree86 HPSBUX01018
2009-05-05 00:00:00
Slackware Advisory SSA:2004-043-02 XFree86 security update
2012-09-11 00:00:00
Slackware: Security Advisory (SSA:2004-043-02)
2012-09-10 00:00:00
nvd
nvd
CVE-2004-0106
2004-03-03 05:00:00
CVE-2004-0084
2004-03-03 05:00:00
nessus
nessus
RHEL 2.1 : XFree86 (RHSA-2004:060)
2004-07-06 00:00:00
Mandrake Linux Security Advisory : XFree86 (MDKSA-2004:012)
2004-07-31 00:00:00
Slackware 8.1 / 9.0 / 9.1 / current : XFree86 security update (SSA:2004-043-02)
2005-07-13 00:00:00
cve
cve
CVE-2004-0106
2004-03-03 05:00:00
CVE-2004-0084
2004-03-03 05:00:00
CVE-2004-0083
2004-03-03 05:00:00
securityvulns
securityvulns
OpenServer 5.0.6 OpenServer 5.0.7 : Xsco contains a buffer overflow that could be exploited to gain root privileges.
2004-08-02 00:00:00
UnixWare 7.1.3 Open UNIX 8.0.0 : Xsco contains a buffer overflow that could be exploited to gain root privileges.
2004-08-02 00:00:00
iDEFENSESecurityAdvisory02.10.04: XFree86FontInformationFileBufferOverflow
2004-02-11 00:00:00
freebsd
freebsd
Buffer overflows in XFree86 servers
2004-02-10 00:00:00
linux_base -- vulnerabilities in Red Hat 7.1 libraries
2004-09-27 00:00:00
suse
suse
local privilege escalation in xf86/XFree86
2004-02-23 16:37:48
osv
osv
xfree86 - several vulnerabilities
2004-02-19 00:00:00
gentoo
gentoo
XFree86 Font Information File Buffer Overflow
2004-02-11 00:00:00
cert
cert
XFree86 vulnerable to buffer overflow via crafted font directory in 'fonts.alias' file
2004-12-07 00:00:00
XFree86 vulnerable to buffer overflow via error in 'ReadFontAlias()' function
2004-12-07 00:00:00
exploitdb
exploitdb
XFree86 4.3 - Font Information File Buffer Overflow
2004-11-10 00:00:00
XFree86 4.x - CopyISOLatin1Lowered Font_Name Buffer Overflow
2004-02-12 00:00:00
debian
debian
[SECURITY] [DSA 443-1] New xfree86 packages fix multiple vulnerabilities
2004-02-20 06:58:37

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.3

Confidence

Low

EPSS

0.102

Percentile

95.0%

JSON
Related for NVD:CVE-2004-0083
redhat2ubuntucve3slackware1cvelist3openvas12nvd2nessus11cve3securityvulns3freebsd2suse1osv1gentoo1cert2exploitdb2debian1