6.8
CVE-2007-4568
- EPSS 3.98%
- Veröffentlicht 05.10.2007 21:17:00
- Zuletzt bearbeitet 16.06.2026 22:44:20
- Quelle secalert@redhat.com
- CVE-Watchlists
- Unerledigt
Integer overflow in the build_range function in X.Org X Font Server (xfs) before 1.0.5 allows context-dependent attackers to execute arbitrary code via (1) QueryXBitmaps and (2) QueryXExtents protocol requests with crafted size values, which triggers a heap-based buffer overflow.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
X.Org ≫ X Font Server Version1.0.1
X.Org ≫ X Font Server Version1.0.2
X.Org ≫ X Font Server Version1.0.4
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.98% | 0.891 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.8 | 8.6 | 6.4 |
AV:N/AC:M/Au:N/C:P/I:P/A:P
|
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.
http://docs.info.apple.com/article.html?artnum=307562
http://lists.apple.com/archives/security-announce/2008/Mar/msg00001.html
http://www.vupen.com/english/advisories/2008/0924/references
http://secunia.com/advisories/29420
http://docs.info.apple.com/article.html?artnum=307430
http://lists.apple.com/archives/security-announce/2008/Feb/msg00002.html
http://www.us-cert.gov/cas/techalerts/TA08-043B.html
http://secunia.com/advisories/27240
http://security.gentoo.org/glsa/glsa-200710-11.xml
http://secunia.com/advisories/27228
http://www.novell.com/linux/security/advisories/2007_54_xorg.html
http://bugs.freedesktop.org/show_bug.cgi?id=12298
http://bugs.gentoo.org/show_bug.cgi?id=194606
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=602
http://lists.freedesktop.org/archives/xorg-announce/2007-October/000416.html
http://secunia.com/advisories/27040
http://secunia.com/advisories/27052
http://secunia.com/advisories/27060
http://secunia.com/advisories/27168
http://secunia.com/advisories/27176
http://secunia.com/advisories/27560
http://secunia.com/advisories/28004
http://secunia.com/advisories/28536
http://secunia.com/advisories/28542
http://secunia.com/advisories/28891
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103114-1
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200642-1
http://www.debian.org/security/2007/dsa-1385
http://www.mandriva.com/security/advisories?name=MDKSA-2007:210
http://www.redhat.com/support/errata/RHSA-2008-0029.html
http://www.redhat.com/support/errata/RHSA-2008-0030.html
http://www.securityfocus.com/archive/1/481432/100/0/threaded
http://www.securityfocus.com/bid/25898
http://www.securitytracker.com/id?1018763
http://www.vupen.com/english/advisories/2007/3337
http://www.vupen.com/english/advisories/2007/3338
http://www.vupen.com/english/advisories/2007/3467
http://www.vupen.com/english/advisories/2008/0495/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/36919
https://issues.rpath.com/browse/RPL-1756
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10882
https://www.redhat.com/archives/fedora-package-announce/2007-December/msg00352.html