7.5

CVE-2003-0730

Multiple integer overflows in the font libraries for XFree86 4.3.0 allow local or remote attackers to cause a denial of service or execute arbitrary code via heap-based and stack-based buffer overflow attacks.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Xfree86 ProjectX11r6 Version4.2.1
Xfree86 ProjectX11r6 Version4.3.0
NetbsdNetbsd Version1.5
NetbsdNetbsd Version1.5.1
NetbsdNetbsd Version1.5.2
NetbsdNetbsd Version1.5.3
NetbsdNetbsd Version1.6
NetbsdNetbsd Version1.6.1
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 5.43% 0.917
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.debian.org/security/2003/dsa-380
Patch
Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2003-286.html
Patch
Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2003-287.html
http://www.redhat.com/support/errata/RHSA-2003-288.html
http://www.redhat.com/support/errata/RHSA-2003-289.html
ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-015.txt.asc
ftp://patches.sgi.com/support/free/security/advisories/20031101-01-U.asc
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000821
http://marc.info/?l=bugtraq&m=106229335312429&w=2
http://secunia.com/advisories/24168
http://secunia.com/advisories/24247
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102803-1
http://support.avaya.com/elmodocs2/security/ASA-2007-074.htm
http://www.mandriva.com/security/advisories?name=MDKSA-2003:089
http://www.securityfocus.com/bid/8514
Patch
Vendor Advisory
http://www.vupen.com/english/advisories/2007/0589