CVE-2004-0094

2004-09-0104:00:00

mitre

web.nvd.nist.gov

xfree86

integer signedness errors

denial of service

code execution

glx

dri

nvd

cve-2004-0094

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.5

Confidence

Low

EPSS

0.089

Percentile

94.7%

JSON

Integer signedness errors in XFree86 4.1.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code when using the GLX extension and Direct Rendering Infrastructure (DRI).

Affected configurations

Nvd

Node

xfree86_projectx11r6Match4.1.0

xfree86_projectx11r6Match4.1.11

xfree86_projectx11r6Match4.1.12

xfree86_projectx11r6Match4.2.0

xfree86_projectx11r6Match4.2.1

xfree86_projectx11r6Match4.2.1errata

xfree86_projectx11r6Match4.3.0

VendorProductVersionCPE
xfree86_projectx11r64.1.0cpe:2.3:a:xfree86_project:x11r6:4.1.0:*:*:*:*:*:*:*
xfree86_projectx11r64.1.11cpe:2.3:a:xfree86_project:x11r6:4.1.11:*:*:*:*:*:*:*
xfree86_projectx11r64.1.12cpe:2.3:a:xfree86_project:x11r6:4.1.12:*:*:*:*:*:*:*
xfree86_projectx11r64.2.0cpe:2.3:a:xfree86_project:x11r6:4.2.0:*:*:*:*:*:*:*
xfree86_projectx11r64.2.1cpe:2.3:a:xfree86_project:x11r6:4.2.1:*:*:*:*:*:*:*
xfree86_projectx11r64.2.1cpe:2.3:a:xfree86_project:x11r6:4.2.1:*:errata:*:*:*:*:*
xfree86_projectx11r64.3.0cpe:2.3:a:xfree86_project:x11r6:4.3.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
xfree86_project	x11r6	4.1.0	cpe:2.3:a:xfree86_project:x11r6:4.1.0:::::::*
xfree86_project	x11r6	4.1.11	cpe:2.3:a:xfree86_project:x11r6:4.1.11:::::::*
xfree86_project	x11r6	4.1.12	cpe:2.3:a:xfree86_project:x11r6:4.1.12:::::::*
xfree86_project	x11r6	4.2.0	cpe:2.3:a:xfree86_project:x11r6:4.2.0:::::::*
xfree86_project	x11r6	4.2.1	cpe:2.3:a:xfree86_project:x11r6:4.2.1:::::::*
xfree86_project	x11r6	4.2.1	cpe:2.3:a:xfree86_project:x11r6:4.2.1::errata:::::
xfree86_project	x11r6	4.3.0	cpe:2.3:a:xfree86_project:x11r6:4.3.0:::::::*