Note:
This project will be discontinued after December 13, 2021. [more]
Product:
X11r6
(Xfree86_project)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 27 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2001-07-04 | CVE-2001-1086 | XDM in XFree86 3.3 and 3.3.3 generates easily guessable cookies using gettimeofday() when compiled with the HasXdmXauth option, which allows remote attackers to gain unauthorized access to the X display via a brute force attack. | X11r6 | N/A | ||
| 2001-09-22 | CVE-2001-0955 | Buffer overflow in fbglyph.c in XFree86 before 4.2.0, related to glyph clipping for large origins, allows attackers to cause a denial of service and possibly gain privileges via a large number of characters, possibly through the web page search form of KDE Konqueror or from an xterm command with a long title. | X11r6 | N/A | ||
| 2000-06-19 | CVE-2000-0620 | libX11 X library allows remote attackers to cause a denial of service via a resource mask of 0, which causes libX11 to go into an infinite loop. | X, X11r6 | N/A | ||
| 2000-06-19 | CVE-2000-0504 | libICE in XFree86 allows remote attackers to cause a denial of service by specifying a large value which is not properly checked by the SKIP_STRING macro. | Gdm, X, X11r6 | N/A | ||
| 2000-06-01 | CVE-2000-0476 | xterm, Eterm, and rxvt allow an attacker to cause a denial of service by embedding certain escape characters which force the window to be resized. | Eterm, Putty, Rxvt, X11r6 | N/A | ||
| 2000-05-18 | CVE-2000-0453 | XFree86 3.3.x and 4.0 allows a user to cause a denial of service via a negative counter value in a malformed TCP packet that is sent to port 6000. | X11r6 | N/A | ||
| 2000-04-16 | CVE-2000-0285 | Buffer overflow in XFree86 3.3.x allows local users to execute arbitrary commands via a long -xkbmap parameter. | X11r6 | N/A |