[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2006-1861

Date: (C)2006-05-23   (M)2017-10-12
 
CVSS Score: 7.5Access Vector: NETWORK
Exploitability Subscore: 10.0Access Complexity: LOW
Impact Subscore: 6.4Authentication: NONE
 Confidentiality: PARTIAL
 Integrity: PARTIAL
 Availability: PARTIAL











Multiple integer overflows in FreeType before 2.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attack vectors related to (1) bdf/bdflib.c, (2) sfnt/ttcmap.c, (3) cff/cffgload.c, and (4) the read_lwfn function and a crafted LWFN file in base/ftmac.c. NOTE: item 4 was originally identified by CVE-2006-2493.

Reference:
SECTRACK-1016522
SUNALERT-102705
BID-18034
http://www.securityfocus.com/archive/1/archive/1/436836/100/0/threaded
20060701-01-U
SECUNIA-20100
SECUNIA-20525
SECUNIA-20591
SECUNIA-20638
SECUNIA-20791
SECUNIA-21000
SECUNIA-21062
SECUNIA-21135
SECUNIA-21385
SECUNIA-21701
SECUNIA-23939
SECUNIA-27162
SECUNIA-27167
SECUNIA-27271
SECUNIA-33937
SECUNIA-35200
SECUNIA-35204
SECUNIA-35233
ADV-2006-1868
ADV-2007-0381
APPLE-SA-2009-02-12
DSA-1095
FEDORA-2009-5558
FEDORA-2009-5644
GLSA-200607-02
GLSA-200710-09
MDKSA-2006:099
RHSA-2006:0500
RHSA-2009:0329
RHSA-2009:1062
SUSE-SA:2006:037
SUSE-SR:2007:021
USN-291-1
freetype-lwfn-overflow(26553)
http://sourceforge.net/project/shownotes.php?release_id=416463
http://support.apple.com/kb/HT3438
http://support.avaya.com/elmodocs2/security/ASA-2006-176.htm
https://bugzilla.redhat.com/bugzilla/attachment.cgi?id=128606
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=190593
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=190593#c8
https://bugzilla.redhat.com/show_bug.cgi?id=502565
https://issues.rpath.com/browse/RPL-429

CPE    10
cpe:/a:freetype:freetype:2.1.7
cpe:/a:freetype:freetype:2.0.9
cpe:/a:freetype:freetype:2.1.8
cpe:/a:freetype:freetype:2.1.9
...
CWE    1
CWE-189
OVAL    10
oval:org.secpod.oval:def:200270
oval:org.secpod.oval:def:102406
oval:org.secpod.oval:def:200360
oval:org.secpod.oval:def:101798
...

© 2013 SecPod Technologies