CVE-2006-3740 in XFree86 Xinformation

Résumé

par MITRE

Integer overflow in the scan_cidfont function in X.Org 6.8.2 and XFree86 X server allows local users to execute arbitrary code via crafted (1) CMap and (2) CIDFont font data with modified item counts in the (a) begincodespacerange, (b) cidrange, and (c) notdefrange sections.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Réserver

20/07/2006

Divulgation

12/09/2006

Modérer

accepté

Entrée

VDB-32233

CPE

prêt

EPSS

0.00503

KEV

non

Activités

très faible

Sources

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!