Oval Definition:	oval:org.mitre.oval:def:806
Revision Date: 2007-04-25 Version: 19 Title: Red Hat XFree86 Buffer Overflow in ReadFontAlias Description: Buffer overflow in ReadFontAlias from dirfile.c of XFree86 4.1.0 through 4.3.0 allows local users and remote attackers to execute arbitrary code via a font alias file (font.alias) with a long token, a different vulnerability than CVE-2004-0084 and CVE-2004-0106. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2004-0083 Platform(s): Red Hat Linux 9 Product(s): XFree86 Definition Synopsis Software section Red Hat 9 is installed AND ix86 architecture AND XFree86 version is less than 4.3.0-2.90.55 AND Configuration section /usr/X11R6/bin/XFree86 is SUID and executable /usr/X11R6/bin/XFree86 is SUID and executable AND /usr/X11R6/bin/XFree86 is SUID and executable /usr/X11R6/bin/XFree86 is SUID and executable OR /usr/X11R6/bin/XFree86 is SUID and executable
BACK