CVE Vulnerabilities

CVE-2004-0084

Published: Mar 03, 2004 | Modified: Oct 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu
UNTRIAGED

Buffer overflow in the ReadFontAlias function in XFree86 4.1.0 to 4.3.0, when using the CopyISOLatin1Lowered function, allows local or remote authenticated users to execute arbitrary code via a malformed entry in the font alias (font.alias) file, a different vulnerability than CVE-2004-0083 and CVE-2004-0106.

Affected Software

Name Vendor Start Version End Version
X11r6 Xfree86_project 4.1.0 (including) 4.1.0 (including)
X11r6 Xfree86_project 4.1.11 (including) 4.1.11 (including)
X11r6 Xfree86_project 4.1.12 (including) 4.1.12 (including)
X11r6 Xfree86_project 4.2.0 (including) 4.2.0 (including)
X11r6 Xfree86_project 4.2.1 (including) 4.2.1 (including)
X11r6 Xfree86_project 4.3.0 (including) 4.3.0 (including)
Xorg Ubuntu dapper *
Xorg Ubuntu devel *
Xorg Ubuntu edgy *
Xorg Ubuntu feisty *
Red Hat Enterprise Linux 3 RedHat XFree86-0:4.3.0-55.EL *
Red Hat Enterprise Linux AS (Advanced Server) version 2.1 RedHat *
Red Hat Enterprise Linux ES version 2.1 RedHat *
Red Hat Enterprise Linux WS version 2.1 RedHat *
Red Hat Linux 9 RedHat *
Red Hat Linux Advanced Workstation 2.1 RedHat *

References