Oval Definition:oval:org.mitre.oval:def:807
Revision Date:2007-04-25Version:19
Title:Red Hat XFree86 Buffer Overflow in ReadFontAlias II
Description:Buffer overflow in the ReadFontAlias function in XFree86 4.1.0 to 4.3.0, when using the CopyISOLatin1Lowered function, allows local or remote authenticated users to execute arbitrary code via a malformed entry in the font alias (font.alias) file, a different vulnerability than CVE-2004-0083 and CVE-2004-0106.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2004-0084
Platform(s):Red Hat Linux 9
Product(s):XFree86
Definition Synopsis
  • Software section
  • Red Hat 9 is installed
  • AND ix86 architecture
  • AND XFree86 version is less than 4.3.0-2.90.55
  • AND Configuration section
  • /usr/X11R6/bin/XFree86 is SUID and executable
  • /usr/X11R6/bin/XFree86 is SUID and executable
  • AND /usr/X11R6/bin/XFree86 is SUID and executable
  • /usr/X11R6/bin/XFree86 is SUID and executable
  • OR /usr/X11R6/bin/XFree86 is SUID and executable
  • BACK