CVE Vulnerabilities

CVE-2006-6102

Published: Dec 31, 2006 | Modified: Oct 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of unspecified data structures.

Affected Software

Name Vendor Start Version End Version
Xfree86_x_server Xfree86_project * *
X.org X.org 6.8.2 6.8.2
X.org X.org 7.1 7.1
X.org X.org 6.9.0 6.9.0
X.org X.org 7.0 7.0

References