[Forgot Password]
Login  Register Subscribe

23631

 
 

119105

 
 

98250

 
 

909

 
 

79281

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2006-3467

Date: (C)2006-07-21   (M)2017-10-11 


Integer overflow in FreeType before 2.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PCF file, as demonstrated by the Red Hat bad1.pcf test file, due to a partial fix of CVE-2006-1861.

CVSS Score: 7.5Access Vector: NETWORK
Exploit Score: 10.0Access Complexity: LOW
Impact Score: 6.4Authentication: NONE
 Confidentiality: PARTIAL
 Integrity: PARTIAL
 Availability: PARTIAL





Reference:
SECTRACK-1016522
SUNALERT-102705
2006-0052
20060701-01-U
http://www.securityfocus.com/archive/1/archive/1/444318/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/451419/100/200/threaded
http://www.securityfocus.com/archive/1/archive/1/451404/100/0/threaded
http://www.securityfocus.com/archive/1/archive/1/451417/100/200/threaded
http://www.securityfocus.com/archive/1/archive/1/451426/100/200/threaded
SECUNIA-21062
SECUNIA-21135
SECUNIA-21144
SECUNIA-21232
SECUNIA-21285
SECUNIA-21566
SECUNIA-21567
SECUNIA-21606
SECUNIA-21626
SECUNIA-21701
SECUNIA-21793
SECUNIA-21798
SECUNIA-21836
SECUNIA-22027
SECUNIA-22332
SECUNIA-22875
SECUNIA-22907
SECUNIA-23400
SECUNIA-23939
SECUNIA-27271
SECUNIA-33937
ADV-2006-4502
ADV-2006-4522
ADV-2007-0381
APPLE-SA-2009-02-12
DSA-1178
DSA-1193
GLSA-200609-04
MDKSA-2006:129
MDKSA-2006:148
RHSA-2006:0500
RHSA-2006:0634
RHSA-2006:0635
SUSE-SA:2006:045
SUSE-SR:2007:021
USN-324-1
USN-341-1
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=190593
http://support.apple.com/kb/HT3438
http://support.avaya.com/elmodocs2/security/ASA-2006-176.htm
http://support.avaya.com/elmodocs2/security/ASA-2006-186.htm
http://support.avaya.com/elmodocs2/security/ASA-2006-284.htm
http://www.vmware.com/download/esx/esx-202-200610-patch.html
http://www.vmware.com/download/esx/esx-213-200610-patch.html
http://www.vmware.com/download/esx/esx-254-200610-patch.html

CPE    1
cpe:/a:freetype:freetype:2.1
CWE    1
CWE-189

© 2013 SecPod Technologies