CVE-2003-0730

Published: Oct 20, 2003Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Multiple integer overflows in the font libraries for XFree86 4.3.0 allow local or remote attackers to cause a denial of service or execute arbitrary code via heap-based and stack-based buffer overflow attacks.

Affected (8)

Products: Xfree86 Project: X11r6 · Netbsd: Netbsd

Xfree86 Project

1 product

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Xfree86 Project X11r6	Version 4.2.1
Xfree86 Project X11r6	Version 4.3.0

Configuration B

6 vulnerable

Vulnerable Software	Affected Versions
Netbsd Netbsd	Version 1.5.1
Netbsd Netbsd	Version 1.5.2
Netbsd Netbsd	Version 1.5.3
Netbsd Netbsd	Version 1.5
Netbsd Netbsd	Version 1.6.1
Netbsd Netbsd	Version 1.6

References (32)

ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-015.txt.asc (unsafe URL)

Source: cve@mitre.org

ftp://patches.sgi.com/support/free/security/advisories/20031101-01-U.asc (unsafe URL)

Source: cve@mitre.org

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000821

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=106229335312429&w=2

Source: cve@mitre.org

http://secunia.com/advisories/24168

Source: cve@mitre.org

http://secunia.com/advisories/24247

Source: cve@mitre.org

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102803-1

Source: cve@mitre.org

http://support.avaya.com/elmodocs2/security/ASA-2007-074.htm

Source: cve@mitre.org

http://www.debian.org/security/2003/dsa-380

Source: cve@mitre.org

PatchVendor Advisory

http://www.mandriva.com/security/advisories?name=MDKSA-2003:089

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2003-286.html

Source: cve@mitre.org

PatchVendor Advisory

http://www.redhat.com/support/errata/RHSA-2003-287.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2003-288.html

Source: cve@mitre.org

http://www.redhat.com/support/errata/RHSA-2003-289.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/8514

Source: cve@mitre.org

PatchVendor Advisory

http://www.vupen.com/english/advisories/2007/0589

Source: cve@mitre.org

ftp://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2003-015.txt.asc (unsafe URL)

Source: af854a3a-2127-422b-91ae-364da2661108

ftp://patches.sgi.com/support/free/security/advisories/20031101-01-U.asc (unsafe URL)

Source: af854a3a-2127-422b-91ae-364da2661108

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000821

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=106229335312429&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/24168

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/24247

Source: af854a3a-2127-422b-91ae-364da2661108

http://sunsolve.sun.com/search/document.do?assetkey=1-26-102803-1

Source: af854a3a-2127-422b-91ae-364da2661108

http://support.avaya.com/elmodocs2/security/ASA-2007-074.htm

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2003/dsa-380

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.mandriva.com/security/advisories?name=MDKSA-2003:089

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2003-286.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.redhat.com/support/errata/RHSA-2003-287.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2003-288.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.redhat.com/support/errata/RHSA-2003-289.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/8514

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.vupen.com/english/advisories/2007/0589

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.