Vulnerability in Openbsd
CVE-2004-0084
Buffer overflow in the ReadFontAlias function in XFree86 4.1.0 to 4.3.0, when using the CopyISOLatin1Lowered function, allows local or remote authenticated users to execute arbitrary code via a malformed entry in the font alias (font.alias…
EPSS: 0.249 (97.6th percentile) — read the EPSS interpretation.
Affected products
- Openbsd — versions 3.3, 3.4
- Xfree86_project X11r6 — versions 4.1.0, 4.1.11, 4.1.12
- N/a — versions n/a
References
- cve@mitre.org (x_refsource_OVAL, signature, vdb-entry)
- cve@mitre.org (vendor-advisory, x_refsource_SUSE)
- cve@mitre.org (US Government Resource, x_refsource_CERT-VN, third-party-advisory)
- cve@mitre.org (x_refsource_REDHAT, vendor-advisory, Patch, Vendor Advisory)
- cve@mitre.org (vendor-advisory, x_refsource_SUNALERT)
- cve@mitre.org (vendor-advisory, x_refsource_CONECTIVA)
- cve@mitre.org (vdb-entry, x_refsource_XF)
- cve@mitre.org (x_refsource_OVAL, signature, vdb-entry)
- cve@mitre.org (x_refsource_FEDORA, vendor-advisory)
- cve@mitre.org (vendor-advisory, x_refsource_DEBIAN)