Xfree86 Project X11R6 vulnerabilities

CVE-2000-0504 [MEDIUM] CVE-2000-0504: libICE in XFree86 allows remote attackers to cause a denial of service by specifying a large value w libICE in XFree86 allows remote attackers to cause a denial of service by specifying a large value which is not properly checked by the SKIP_STRING macro.

CVE-2000-0476 [MEDIUM] CVE-2000-0476: xterm, Eterm, and rxvt allow an attacker to cause a denial of service by embedding certain escape ch xterm, Eterm, and rxvt allow an attacker to cause a denial of service by embedding certain escape characters which force the window to be resized.

CVE-2000-0453 [MEDIUM] CVE-2000-0453: XFree86 3.3.x and 4.0 allows a user to cause a denial of service via a negative counter value in a m XFree86 3.3.x and 4.0 allows a user to cause a denial of service via a negative counter value in a malformed TCP packet that is sent to port 6000.

CVE-2000-0285 [HIGH] CVE-2000-0285: Buffer overflow in XFree86 3.3.x allows local users to execute arbitrary commands via a long -xkbmap Buffer overflow in XFree86 3.3.x allows local users to execute arbitrary commands via a long -xkbmap parameter.

CVE-1999-0433 [MEDIUM] CVE-1999-0433: XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in re XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service.