CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2006-3740
https://notcve.org/view.php?id=CVE-2006-3740
13 Sep 2006 — Integer overflow in the scan_cidfont function in X.Org 6.8.2 and XFree86 X server allows local users to execute arbitrary code via crafted (1) CMap and (2) CIDFont font data with modified item counts in the (a) begincodespacerange, (b) cidrange, and (c) notdefrange sections. Desbordamiento de entero en la función scan_cidfont en X.Org 6.8.2 and XFree86 X server , permite a un usuario local ejecutar código de su elección a través de la fuentes de datos(1) CMap y (2)CIDFont con contadores modificados en las s... • http://secunia.com/advisories/21864 •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-2006-0197
https://notcve.org/view.php?id=CVE-2006-0197
13 Jan 2006 — The XClientMessageEvent struct used in certain components of X.Org 6.8.2 and earlier, possibly including (1) the X server and (2) Xlib, uses a "long" specifier for elements of the l array, which results in inconsistent sizes in the struct on 32-bit versus 64-bit platforms, and might allow attackers to cause a denial of service (application crash) and possibly conduct other attacks. • http://www.securityfocus.com/archive/1/421256/100/0/threaded •