CVE-2002-1317 – XFree86 X11R6 3.3.x - Font Server Remote Buffer Overrun
https://notcve.org/view.php?id=CVE-2002-1317
Buffer overflow in Dispatch() routine for XFS font server (fs.auto) on Solaris 2.5.1 through 9 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a certain XFS query. Desbordamiento de búfer en la rutina Dispatch() en el servidor de fuentes XFS (fs.auto) en Solaris 2.5.1 a 9 permite a atacantes remotos causar una denegación de servicio (caída) o ejecutar código arbitrario mediante una cierta petición XFS. • https://www.exploit-db.com/exploits/22036 ftp://patches.sgi.com/support/free/security/advisories/20021202-01-I http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21541 http://marc.info/?l=bugtraq&m=103825150527843&w=2 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/48879 http://www.cert.org/advisories/CA-2002-34.html http://www.ciac.org/ciac/bulletins/n-024.shtml http://www.iss.net/security_center/static/10375.php http://www.kb.cert.org •
CVE-2001-1086 – XFree86 X11R6 3.3 XDM - Session Cookie Guessing
https://notcve.org/view.php?id=CVE-2001-1086
XDM in XFree86 3.3 and 3.3.3 generates easily guessable cookies using gettimeofday() when compiled with the HasXdmXauth option, which allows remote attackers to gain unauthorized access to the X display via a brute force attack. • https://www.exploit-db.com/exploits/20993 http://online.securityfocus.com/archive/1/195008 http://www.securityfocus.com/archive/1/194907 http://www.securityfocus.com/bid/2985 https://exchange.xforce.ibmcloud.com/vulnerabilities/6808 •
CVE-1999-0433 – X11R6 3.3.3 - Symlink
https://notcve.org/view.php?id=CVE-1999-0433
XFree86 startx command is vulnerable to a symlink attack, allowing local users to create files in restricted directories, possibly allowing them to gain privileges or cause a denial of service. • https://www.exploit-db.com/exploits/19257 https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0433 •