security flaw

🗓️ 13 Feb 2004 23:44:00Reported by RedHatType

Buffer overflow in ReadFontAlias of XFree86 4.1.0–4.3.0 lets local or remote attackers execute arbitrary code via an oversized font.alias token.

Reporter	Title	Published	Views	Family All 93
BDU FSTEC	Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	6 Jul 201600:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	6 Jul 201600:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	6 Jul 201600:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	6 Jul 201600:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the Debian GNU/Linux operating system that allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	6 Jul 201600:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities in the OpenSUSE operating system that allow malicious actors to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the Red Hat Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the Red Hat Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the Red Hat Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec
BDU FSTEC	Vulnerabilities of the Red Hat Linux operating system, which allow a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information	28 Apr 201500:00	–	bdu_fstec

OS	OS Version	Architecture	Package	Package Version	Filename
Red Hat Enterprise Linux	3	i386	xfree86	0:4.3.0-55.EL	XFree86-0:4.3.0-55.EL.i386.rpm
Red Hat Enterprise Linux	3	ia64	xfree86	0:4.3.0-55.EL	XFree86-0:4.3.0-55.EL.ia64.rpm
Red Hat Enterprise Linux	3	ppc	xfree86	0:4.3.0-55.EL	XFree86-0:4.3.0-55.EL.ppc.rpm
Red Hat Enterprise Linux	3	s390	xfree86	0:4.3.0-55.EL	XFree86-0:4.3.0-55.EL.s390.rpm
Red Hat Enterprise Linux	3	s390x	xfree86	0:4.3.0-55.EL	XFree86-0:4.3.0-55.EL.s390x.rpm
Red Hat Enterprise Linux	3	x86_64	xfree86	0:4.3.0-55.EL	XFree86-0:4.3.0-55.EL.x86_64.rpm
Red Hat Enterprise Linux	3	i386	xfree86-100dpi-fonts	0:4.3.0-55.EL	XFree86-100dpi-fonts-0:4.3.0-55.EL.i386.rpm
Red Hat Enterprise Linux	3	ia64	xfree86-100dpi-fonts	0:4.3.0-55.EL	XFree86-100dpi-fonts-0:4.3.0-55.EL.ia64.rpm
Red Hat Enterprise Linux	3	ppc	xfree86-100dpi-fonts	0:4.3.0-55.EL	XFree86-100dpi-fonts-0:4.3.0-55.EL.ppc.rpm
Red Hat Enterprise Linux	3	s390	xfree86-100dpi-fonts	0:4.3.0-55.EL	XFree86-100dpi-fonts-0:4.3.0-55.EL.s390.rpm

Source	Link
access	www.access.redhat.com/security/cve/CVE-2004-0083
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
nvd	www.nvd.nist.gov/vuln/detail/CVE-2004-0083
cve	www.cve.org/CVERecord

21 Nov 2025 17:27Current

6.3Medium risk

Vulners AI Score6.3

CVSS 210

EPSS0.24863