CVE-2002-1510
https://notcve.org/view.php?id=CVE-2002-1510
xdm, with the authComplain variable set to false, allows arbitrary attackers to connect to the X server if the xdm auth directory does not exist. xdm, con la variable authComplain puesta a falso, permite a atacantes arbitrarios conectar al servidor X si el directorio auth de xdm no existe. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000533 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/55602 http://wuarchive.wustl.edu/mirrors/NetBSD/NetBSD-current/xsrc/xfree/xc/programs/Xserver/hw/xfree86/CHANGELOG http://www.iss.net/security_center/static/11389.php http://www.redhat.com/support/errata/RHSA-2003-064.html http://www.redhat.com/support/errata/RHSA-2003-065.html https://access.redhat.com/security/cve/CVE-2002-1510 https://bugzilla.redhat. •
CVE-2002-1317 – XFree86 X11R6 3.3.x - Font Server Remote Buffer Overrun
https://notcve.org/view.php?id=CVE-2002-1317
Buffer overflow in Dispatch() routine for XFS font server (fs.auto) on Solaris 2.5.1 through 9 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a certain XFS query. Desbordamiento de búfer en la rutina Dispatch() en el servidor de fuentes XFS (fs.auto) en Solaris 2.5.1 a 9 permite a atacantes remotos causar una denegación de servicio (caída) o ejecutar código arbitrario mediante una cierta petición XFS. • https://www.exploit-db.com/exploits/22036 ftp://patches.sgi.com/support/free/security/advisories/20021202-01-I http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21541 http://marc.info/?l=bugtraq&m=103825150527843&w=2 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/48879 http://www.cert.org/advisories/CA-2002-34.html http://www.ciac.org/ciac/bulletins/n-024.shtml http://www.iss.net/security_center/static/10375.php http://www.kb.cert.org •
CVE-2001-0955
https://notcve.org/view.php?id=CVE-2001-0955
Buffer overflow in fbglyph.c in XFree86 before 4.2.0, related to glyph clipping for large origins, allows attackers to cause a denial of service and possibly gain privileges via a large number of characters, possibly through the web page search form of KDE Konqueror or from an xterm command with a long title. • http://cvsweb.xfree86.org/cvsweb/xc/programs/Xserver/fb/fbglyph.c http://marc.info/?l=bugtraq&m=100776624224549&w=2 http://marc.info/?l=bugtraq&m=100784290015880&w=2 http://marc.info/?l=vuln-dev&m=100118958310463&w=2 http://www.securityfocus.com/bid/3657 http://www.securityfocus.com/bid/3663 http://www.xfree86.org/4.2.0/RELNOTES2.html#2 http://www.xfree86.org/security https://exchange.xforce.ibmcloud.com/vulnerabilities/7673 https://exchange.xforce.ibmcloud. •
CVE-2001-1179
https://notcve.org/view.php?id=CVE-2001-1179
xman allows local users to gain privileges by modifying the MANPATH to point to a man page whose filename contains shell metacharacters. • http://www.securityfocus.com/archive/1/197498 •
CVE-2001-1178 – XFree86 X11R6 3.3.2 XMan - ManPath Environment Variable Buffer Overflow
https://notcve.org/view.php?id=CVE-2001-1178
Buffer overflow in xman allows local users to gain privileges via a long MANPATH environment variable. • https://www.exploit-db.com/exploits/21010 http://archives.neohapsis.com/archives/bugtraq/2001-07/0234.html http://www.securityfocus.com/bid/3030 https://exchange.xforce.ibmcloud.com/vulnerabilities/6853 •