CVE Vulnerabilities

CVE-2004-0084

Published: Mar 03, 2004 | Modified: Oct 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Buffer overflow in the ReadFontAlias function in XFree86 4.1.0 to 4.3.0, when using the CopyISOLatin1Lowered function, allows local or remote authenticated users to execute arbitrary code via a malformed entry in the font alias (font.alias) file, a different vulnerability than CVE-2004-0083 and CVE-2004-0106.

Affected Software

Name Vendor Start Version End Version
X11r6 Xfree86_project 4.1.0 4.1.0
X11r6 Xfree86_project 4.1.11 4.1.11
X11r6 Xfree86_project 4.1.12 4.1.12
X11r6 Xfree86_project 4.2.0 4.2.0
X11r6 Xfree86_project 4.2.1 4.2.1
X11r6 Xfree86_project 4.2.1 4.2.1
X11r6 Xfree86_project 4.3.0 4.3.0
Red Hat Enterprise Linux 2.1 RedHat XFree86 *
Red Hat Enterprise Linux 3 RedHat XFree86-0:4.3.0-55.EL *
Red Hat Linux 9 RedHat XFree86 *
Xorg Ubuntu dapper *
Xorg Ubuntu devel *
Xorg Ubuntu edgy *
Xorg Ubuntu feisty *

References