Xfree86 Project X11R6 vulnerabilities
25 known vulnerabilities affecting xfree86_project/x11r6.
Total CVEs
25
CISA KEV
0
Public exploits
9
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH16MEDIUM5LOW1
Vulnerabilities
Page 2 of 2
CVE-2001-1179P4HIGHCVSS 7.2v3.3.22001-07-17
CVE-2001-1179 [HIGH] CVE-2001-1179: xman allows local users to gain privileges by modifying the MANPATH to point to a man page whose fil
xman allows local users to gain privileges by modifying the MANPATH to point to a man page whose filename contains shell metacharacters.
nvd
CVE-2001-0955P4HIGHCVSS 7.2v4.0v4.0.1+1 more2001-09-22
CVE-2001-0955 [HIGH] CVE-2001-0955: Buffer overflow in fbglyph.c in XFree86 before 4.2.0, related to glyph clipping for large origins, a
Buffer overflow in fbglyph.c in XFree86 before 4.2.0, related to glyph clipping for large origins, allows attackers to cause a denial of service and possibly gain privileges via a large number of characters, possibly through the web page search form of KDE Konqueror or from an xterm command with a long title.
nvd
CVE-2004-0106P4HIGHCVSS 7.2v4.1.0v4.1.11+4 more2004-03-03
CVE-2004-0106 [HIGH] CVE-2004-0106: Multiple unknown vulnerabilities in XFree86 4.1.0 to 4.3.0, related to improper handling of font fil
Multiple unknown vulnerabilities in XFree86 4.1.0 to 4.3.0, related to improper handling of font files, a different set of vulnerabilities than CVE-2004-0083 and CVE-2004-0084.
nvd
CVE-2000-0620P4MEDIUMCVSS 5.0v3.3.3v3.3.4+3 more2000-06-19
CVE-2000-0620 [MEDIUM] CVE-2000-0620: libX11 X library allows remote attackers to cause a denial of service via a resource mask of 0, whic
libX11 X library allows remote attackers to cause a denial of service via a resource mask of 0, which causes libX11 to go into an infinite loop.
nvd
CVE-2003-0071P4LOWCVSS 2.1v4.0v4.0.1+4 more2003-03-03
CVE-2003-0071 [LOW] CVE-2003-0071: The DEC UDK processing feature in the xterm terminal emulator in XFree86 4.2.99.4 and earlier allows
The DEC UDK processing feature in the xterm terminal emulator in XFree86 4.2.99.4 and earlier allows attackers to cause a denial of service via a certain character escape sequence that causes the terminal to enter a tight loop.
nvd
← Previous2 / 2