Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2011-3256
HistoryOct 14, 2011 - 10:55 a.m.

CVE-2011-3256

2011-10-1410:55:10
CWE-94
[email protected]
web.nvd.nist.gov
6

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

8.8

Confidence

High

EPSS

0.058

Percentile

93.4%

JSON

FreeType 2 before 2.4.7, as used in CoreGraphics in Apple iOS before 5, Mandriva Enterprise Server 5, and possibly other products, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted font, a different vulnerability than CVE-2011-0226.

Affected configurations

Nvd
Node
appleiphone_osMatch3.0-iphone
OR
appleiphone_osMatch3.1
OR
appleiphone_osMatch3.1-iphone
OR
appleiphone_osMatch3.1-ipodtouch
OR
appleiphone_osMatch3.1.2-iphone
OR
appleiphone_osMatch3.1.3-iphone
OR
appleiphone_osMatch3.2-iphone
OR
appleiphone_osMatch3.2-ipodtouch
OR
appleiphone_osMatch3.2.1
OR
appleiphone_osMatch3.2.1-ipad
OR
appleiphone_osMatch3.2.2
OR
appleiphone_osMatch4.0
OR
appleiphone_osMatch4.0-iphone
OR
appleiphone_osMatch4.0-ipodtouch
OR
appleiphone_osMatch4.0.1
OR
appleiphone_osMatch4.0.1-iphone
OR
appleiphone_osMatch4.0.1-ipodtouch
OR
appleiphone_osMatch4.0.2
OR
appleiphone_osMatch4.1
OR
appleiphone_osMatch4.2.1
OR
appleiphone_osMatch4.2.5
OR
appleiphone_osMatch4.2.8
OR
appleiphone_osMatch4.3.0
OR
appleiphone_osMatch4.3.1
OR
appleiphone_osMatch4.3.2
OR
appleiphone_osMatch4.3.3
OR
appleiphone_osMatch4.3.5
OR
appleiphone_osMatch4.3.5-ipad
OR
appleiphone_osMatch4.3.5-ipodtouch

Related

openvas 53
prion 2
cvelist 2
cve 2
nessus 34
ubuntucve 3
fedora 6
debiancve 2
debian 3
oraclelinux 3
centos 1
redhat 3
veracode 2
amazon 1
freebsd 2
nvd 1
ubuntu 2
checkpoint_advisories 1
suse 7
securityvulns 9
gentoo 1
openvas
openvas
FreeBSD Ports: freetype2
2012-02-13 00:00:00
Fedora Update for freetype FEDORA-2011-14749
2011-11-11 00:00:00
FreeBSD Ports: freetype2
2012-02-13 00:00:00
prion
prion
Memory corruption
2011-10-14 10:55:00
Integer overflow
2011-07-19 22:55:00
cvelist
cvelist
CVE-2011-3256
2011-10-14 10:00:00
CVE-2011-0226
2011-07-19 22:00:00
cve
cve
CVE-2011-3256
2011-10-14 10:55:10
CVE-2011-0226
2011-07-19 22:55:00
nessus
nessus
Oracle Solaris Third-Party Patch Update : libfxt (cve_2011_3256_denial_of)
2015-01-19 00:00:00
Amazon Linux AMI : freetype (ALAS-2011-08)
2013-09-04 00:00:00
Oracle Linux 4 / 5 / 6 : freetype (ELSA-2011-1402)
2013-07-12 00:00:00
ubuntucve
ubuntucve
CVE-2011-3256
2011-10-14 00:00:00
CVE-2011-0226
2011-07-19 00:00:00
CVE-2011-3439
2011-11-11 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: freetype-2.4.4-6.fc15
2011-11-10 17:51:50
[SECURITY] Fedora 15 Update: freetype-2.4.4-8.fc15
2012-04-24 15:01:38
[SECURITY] Fedora 15 Update: freetype-2.4.4-7.fc15
2011-12-02 21:29:33
debiancve
debiancve
CVE-2011-3256
2011-10-14 10:55:10
CVE-2011-0226
2011-07-19 22:55:00
debian
debian
[BSA-068] Security Update for freetype
2012-03-23 06:56:21
[SECURITY] [DSA 2328-1] freetype security update
2011-10-24 20:22:32
[SECURITY] [DSA 2294-1] freetype security update
2011-08-14 18:41:39
oraclelinux
oraclelinux
freetype security update
2011-10-25 00:00:00
freetype security update
2011-07-21 00:00:00
freetype security update
2013-01-31 00:00:00
centos
centos
freetype security update
2011-10-26 09:52:51
redhat
redhat
(RHSA-2011:1402) Important: freetype security update
2011-10-25 00:00:00
(RHSA-2011:1085) Important: freetype security update
2011-07-21 00:00:00
(RHSA-2012:0094) Important: freetype security update
2012-02-02 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:03:56
Arbitrary Code Execution
2020-04-10 00:59:45
amazon
amazon
Important: freetype
2011-10-31 18:18:00
freebsd
freebsd
freetype -- Some type 1 fonts handling vulnerabilities
2011-10-12 00:00:00
freetype2 -- execute arbitrary code or cause denial of service
2011-07-19 00:00:00
nvd
nvd
CVE-2011-0226
2011-07-19 22:55:00
ubuntu
ubuntu
FreeType vulnerability
2011-07-25 00:00:00
FreeType vulnerabilities
2011-11-18 00:00:00
checkpoint_advisories
checkpoint_advisories
FreeType PostScript Type1 Font Parsing Code Execution (CVE-2011-0226)
2011-10-04 00:00:00
suse
suse
Security update for freetype2 (important)
2011-07-28 00:08:40
freetype: Fixed several off-by-one / length checks missing (important)
2011-07-28 00:08:34
freetype2 (important)
2012-01-05 12:08:34
securityvulns
securityvulns
APPLE-SA-2011-07-15-1 iOS 4.3.4 Software Update
2011-07-18 00:00:00
APPLE-SA-2011-07-15-2 iOS 4.2.9 Software Update for iPhone
2011-07-18 00:00:00
Apple iOS (iOS) security vulnerabilities
2011-07-26 00:00:00
gentoo
gentoo
FreeType: Multiple vulnerabilities
2012-01-23 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

8.8

Confidence

High

EPSS

0.058

Percentile

93.4%

JSON
Related for NVD:CVE-2011-3256
openvas53prion2cvelist2cve2nessus34ubuntucve3fedora6debiancve2debian3oraclelinux3centos1redhat3veracode2amazon1freebsd2nvd1ubuntu2checkpoint_advisories1suse7securityvulns9gentoo1