Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
x.org x.org vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2012-2118
Format string vulnerability in the LogVHdrMessageVerb function in os/log.c in X.Org X11 1.11 allows malicious users to cause a denial of service or possibly execute arbitrary code via format string specifiers in an input device name.
X.org X11 1.11
10
CVSSv2
CVE-2008-2362
Multiple integer overflows in the Render extension in the X server 1.4 in X.Org X11R7.3 allow context-dependent malicious users to execute arbitrary code via a (1) SProcRenderCreateLinearGradient, (2) SProcRenderCreateRadialGradient, or (3) SProcRenderCreateConicalGradient reques...
X X11 R7.3
10
CVSSv2
CVE-2006-6102
Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X server, allows local users to execute arbitrary code via a crafted X protocol request that triggers memory corruption during processing of unspecified da...
Xfree86 Project Xfree86 X Server
X.org X.org 6.8.2
X.org X.org 7.1
X.org X.org 6.9.0
X.org X.org 7.0
10
CVSSv2
CVE-2004-0914
Multiple vulnerabilities in libXpm for 6.8.1 and previous versions, as used in XFree86 and other packages, include (1) multiple integer overflows, (2) out-of-bounds memory accesses, (3) directory traversal, (4) shell metacharacter, (5) endless loops, and (6) memory leaks, which c...
Xfree86 Project X11r6 3.3.4
Xfree86 Project X11r6 4.1.0
Xfree86 Project X11r6 3.3.6
X.org X11r6 6.8.1
Xfree86 Project X11r6 4.0.2.11
Lesstif Lesstif 0.93.96
Lesstif Lesstif 0.93.91
Xfree86 Project X11r6 4.0.3
Lesstif Lesstif 0.93.94
X.org X11r6 6.7.0
Lesstif Lesstif 0.93.36
Xfree86 Project X11r6 4.3.0
Xfree86 Project X11r6 3.3
Lesstif Lesstif 0.93.34
Xfree86 Project X11r6 4.2.1
X.org X11r6 6.8
Lesstif Lesstif 0.93.12
Lesstif Lesstif 0.93.40
Xfree86 Project X11r6 4.0
Xfree86 Project X11r6 3.3.2
Xfree86 Project X11r6 3.3.5
Xfree86 Project X11r6 4.0.1
10
CVSSv2
CVE-1999-0526
An X server's access control is disabled (e.g. through an "xhost +" command) and allows anyone to connect to the server.
X.org X11 7.1 1.1.0
9.3
CVSSv2
CVE-2011-2895
The LZW decompressor in (1) the BufCompressedFill function in fontfile/decompress.c in X.Org libXfont prior to 1.4.4 and (2) compress/compress.c in 4.3BSD, as used in zopen.c in OpenBSD prior to 3.8, FreeBSD, NetBSD 4.0.x and 5.0.x prior to 5.0.3 and 5.1.x prior to 5.1.1, FreeTyp...
Openbsd Openbsd 2.8
Freetype Freetype 2.1.9
Netbsd Netbsd
X Libxfont 1.2.1
X Libxfont 1.2.7
X Libxfont 1.2.6
Openbsd Openbsd 3.1
X Libxfont 1.3.3
Openbsd Openbsd 3.3
Openbsd Openbsd 2.9
X Libxfont
X Libxfont 1.3.2
X Libxfont 1.3.4
Openbsd Openbsd 2.1
X Libxfont 1.3.1
Freebsd Freebsd
Openbsd Openbsd 2.2
X Libxfont 1.4.0
Openbsd Openbsd 2.0
Openbsd Openbsd 2.7
X Libxfont 1.2.4
X Libxfont 1.2.9
9.3
CVSSv2
CVE-2011-0465
xrdb.c in xrdb prior to 1.0.9 in X.Org X11R7.6 and previous versions allows remote malicious users to execute arbitrary commands via shell metacharacters in a hostname obtained from a (1) DHCP or (2) XDMCP message.
X X11 R7.0
X X11 R3
X X11 R6.1
X X11 R6.8.0
Matthias Hopf Xrdb 1.0.2
X X11 R6.7
X X11 R7.2
X X11 R2
X X11
X X11 R7.1
X X11 R7.5
X X11 R5
X X11 R6.9.0
X X11 R7.3
X X11 R1
X X11 R6.8.1
X X11 R6.4
Matthias Hopf Xrdb 1.0.4
Matthias Hopf Xrdb
Matthias Hopf Xrdb 1.0.7
Matthias Hopf Xrdb 1.0.5
X X11 R4
9.3
CVSSv2
CVE-2007-6427
The XInput extension in X.Org Xserver prior to 1.4.1 allows context-dependent malicious users to execute arbitrary code via requests related to byte swapping and heap corruption within multiple functions, a different vulnerability than CVE-2007-4990.
X.org X Server
Canonical Ubuntu Linux 6.06
Canonical Ubuntu Linux 7.04
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 6.10
Debian Debian Linux 3.1
Debian Debian Linux 4.0
Apple Mac Os X
Fedoraproject Fedora 8
Fedoraproject Fedora 7
Opensuse Opensuse 10.2
Suse Linux Enterprise Server 9
Opensuse Opensuse 10.3
Suse Linux Enterprise Software Development Kit 10
Suse Linux Enterprise Server 10
Suse Linux Enterprise Desktop 10
Suse Open Enterprise Server -
Suse Linux 10.1
Suse Linux Enterprise Server 8
Suse Linux Enterprise Desktop 9
9.3
CVSSv2
CVE-2007-6429
Multiple integer overflows in X.Org Xserver prior to 1.4.1 allow context-dependent malicious users to execute arbitrary code via (1) a GetVisualInfo request containing a 32-bit value that is improperly used to calculate an amount of memory for allocation by the EVI extension, or ...
X.org Xserver
X.org Evi
X.org Mit-shm
9.3
CVSSv2
CVE-2007-5760
Array index error in the XFree86-Misc extension in X.Org Xserver prior to 1.4.1 allows context-dependent malicious users to execute arbitrary code via a PassMessage request containing a large array index.
X.org Xserver
Xfree86 Project Xfree86-misc
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »