Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2003-0581HistoryAug 18, 2003 - 4:00 a.m.
CVE-2003-0581
2003-08-1804:00:00
Debian Security Bug Tracker
security-tracker.debian.org
10
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.008 Low
EPSS
Percentile
82.1%
X Fontserver for Truetype fonts (xfstt) 1.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a (1) FS_QueryXExtents8 or (2) FS_QueryXBitmaps8 packet, and possibly other types of packets, with a large num_ranges value, which causes an out-of-bounds array access.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 11 | all | xfstt | < 1.5-1 | xfstt_1.5-1_all.deb |
Related
cvelist
cvelist
CVE-2003-0581
2003-07-25 04:00:00
nessus
nessus
TrueType Font Server for X11 (xfstt) Malformed Packet Remote Overflow
2003-08-01 00:00:00
Debian DSA-360-1 : xfstt - several vulnerabilities
2004-09-29 00:00:00
nvd
nvd
CVE-2003-0581
2003-08-18 04:00:00
ubuntucve
ubuntucve
CVE-2003-0581
2003-08-18 00:00:00
cve
cve
CVE-2003-0581
2003-08-18 04:00:00
debian
debian
[SECURITY] [DSA-360-1] New xfstt packages fix several vulnerabilities
2003-08-01 13:05:30
osv
osv
xfstt - several vulnerabilities
2003-08-01 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA-360-1] New xfstt packages fix several vulnerabilities
2003-08-04 00:00:00
openvas
openvas
Debian: Security Advisory (DSA-360)
2008-01-17 00:00:00
Debian Security Advisory DSA 360-1 (xfstt)
2008-01-17 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.008 Low
EPSS
Percentile
82.1%
Related for DEBIANCVE:CVE-2003-0581