Oval Definition:oval:org.mitre.oval:def:19166
Revision Date:2015-04-20Version:31
Title:HP-UX Running Xserver, Remote Execution of Arbitrary Code
Description:Buffer overflow in (1) X.Org Xserver before 1.4.1, and (2) the libfont and libXfont libraries on some platforms including Sun Solaris, allows context-dependent attackers to execute arbitrary code via a PCF font with a large difference between the last col and first col values in the PCF_BDF_ENCODINGS table.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2008-0006
Platform(s):HP-UX 11
Product(s):
Definition Synopsis
  • Criteria meets HP Security Bulletin HPSBUX02381
  • HP-UX B.11.31
  • AND Xserver.X11-SERV is installed
  • AND NOT Patch PHSS_38840 is installed
  • OR Criteria meets HP Security Bulletin HPSBUX02381
  • HP-UX B.11.23
  • AND filesets tests
  • URL: is installed
  • OR Xserver.X11-SERV is installed
  • AND NOT Patch PHSS_37972 is installed
  • OR Criteria meets HP Security Bulletin HPSBUX02381
  • HP-UX B.11.11
  • AND filesets tests
  • URL: is installed
  • OR Xserver.X11-SERV is installed
  • AND NOT Patch PHSS_34392 is installed
    • BACK