CVE-2007-1351

Severity

85%

Complexity

68%

Confidentiality

165%

Integer overflow in the bdfReadCharacters function in bdfread.c in (1) X.Org libXfont before 20070403 and (2) freetype 2.3.2 and earlier allows remote authenticated users to execute arbitrary code via crafted BDF fonts, which result in a heap overflow.

Integer overflow in the bdfReadCharacters function in bdfread.c in (1) X.Org libXfont before 20070403 and (2) freetype 2.3.2 and earlier allows remote authenticated users to execute arbitrary code via crafted BDF fonts, which result in a heap overflow.

CVSS 2.0 Base Score 8.5. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:S/C:C/I:C/A:C).

Overview

First reported 17 years ago

2007-04-06 01:19:00

Last updated 6 years ago

2018-10-16 16:38:00

Affected Software

Red Hat Desktop 3.0

3.0

Red Hat Desktop 4.0

4.0

OpenBSD 3.9

3.9

OpenBSD 4.0

4.0

References

http://issues.foresightlinux.org/browse/FL-223

20070403 Multiple Vendor X Server BDF Font Parsing Integer Overflow Vulnerability

Patch

APPLE-SA-2007-11-14

APPLE-SA-2009-02-12

[xorg-announce] 20070403 various integer overflow vulnerabilites in xserver, libX11 and libXfont

RHSA-2007:0125

24741

Vendor Advisory

24745

24756

24758

24765

24768

24770

Vendor Advisory

24771

24772

24776

24791

24885

24889

24921

24996

25004

25006

25096

25195

25216

25305

25495

28333

30161

33937

GLSA-200705-02

GLSA-200705-10

SSA:2007-109-01

http://sourceforge.net/project/shownotes.php?group_id=3157&release_id=498954

http://sourceforge.net/project/shownotes.php?release_id=498954

102886

http://support.apple.com/kb/HT3438

http://support.avaya.com/elmodocs2/security/ASA-2007-178.htm

http://support.avaya.com/elmodocs2/security/ASA-2007-193.htm

DSA-1294

DSA-1454

GLSA-200805-07

MDKSA-2007:079

MDKSA-2007:080

MDKSA-2007:081

SUSE-SA:2007:027

SUSE-SR:2007:006

[3.9] 021: SECURITY FIX: April 4, 2007

[4.0] 011: SECURITY FIX: April 4, 2007

RHSA-2007:0126

RHSA-2007:0132

RHSA-2007:0150

20070404 rPSA-2007-0065-1 freetype xorg-x11 xorg-x11-fonts xorg-x11-tools xorg-x11-xfs

20070405 FLEA-2007-0009-1: xorg-x11 freetype

23283

Patch

23300

23402

1017857

2007-0013

USN-448-1

ADV-2007-1217

ADV-2007-1264

ADV-2007-1548

xorg-bdf-font-bo(33417)

https://issues.rpath.com/browse/RPL-1213

oval:org.mitre.oval:def:11266

oval:org.mitre.oval:def:1810

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.