CVE-2006-3739
NONE EPSS 43.3%
Published Sep 13, 200619y ago · Modified Jun 16, 20262w ago
Published Sep 13, 2006 19y ago
Last Modified Jun 16, 2026 2w ago
Description
Integer overflow in the CIDAFM function in X.Org 6.8.2 and XFree86 X server allows local users to execute arbitrary code via crafted Adobe Font Metrics (AFM) files with a modified number of character metrics (StartCharMetrics), which leads to a heap-based buffer overflow.
Threat Intelligence
EPSS Exploit Probability
43.3% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Affected Products 2
| Vendor | Product | Version | Range |
|---|---|---|---|
| x.org | x.org | 6.8.2 | any |
| xfree86_project | xfree86_x | * | any |
References 39
- secunia.com http://secunia.com/advisories/21864
- secunia.com http://secunia.com/advisories/21889
- secunia.com http://secunia.com/advisories/21890
- secunia.com http://secunia.com/advisories/21894
- secunia.com http://secunia.com/advisories/21900
- secunia.com http://secunia.com/advisories/21904
- secunia.com http://secunia.com/advisories/21908
- secunia.com http://secunia.com/advisories/21924
- secunia.com http://secunia.com/advisories/22080
- secunia.com http://secunia.com/advisories/22141
- secunia.com http://secunia.com/advisories/22332
- secunia.com http://secunia.com/advisories/22560
- secunia.com http://secunia.com/advisories/23033
- secunia.com http://secunia.com/advisories/23899
- secunia.com http://secunia.com/advisories/24636
- security.gentoo.org http://security.gentoo.org/glsa/glsa-200609-07.xml
- securitytracker.com http://securitytracker.com/id?1016828
- sunsolve.sun.com http://sunsolve.sun.com/search/document.do?assetkey=1-26-102714-1
- sunsolve.sun.com http://sunsolve.sun.com/search/document.do?assetkey=1-26-102780-1
- support.avaya.com http://support.avaya.com/elmodocs2/security/ASA-2006-190.htm
- support.avaya.com http://support.avaya.com/elmodocs2/security/ASA-2006-191.htm
- debian.org http://www.debian.org/security/2006/dsa-1193
- idefense.com http://www.idefense.com/intelligence/vulnerabilities/display.php?id=412
- mandriva.com http://www.mandriva.com/security/advisories?name=MDKSA-2006:164
- novell.com http://www.novell.com/linux/security/advisories/2006_23_sr.html
- redhat.com http://www.redhat.com/support/errata/RHSA-2006-0665.html
- redhat.com http://www.redhat.com/support/errata/RHSA-2006-0666.html
- securityfocus.com http://www.securityfocus.com/archive/1/445812/100/0/threaded
- securityfocus.com http://www.securityfocus.com/archive/1/464268/100/0/threaded
- securityfocus.com http://www.securityfocus.com/bid/19974
- ubuntu.com http://www.ubuntu.com/usn/usn-344-1
- vmware.com http://www.vmware.com/support/esx25/doc/esx-254-200702-patch.html
- vupen.com http://www.vupen.com/english/advisories/2006/3581
- vupen.com http://www.vupen.com/english/advisories/2006/3582
- vupen.com http://www.vupen.com/english/advisories/2007/0322
- vupen.com http://www.vupen.com/english/advisories/2007/1171
- exchange.xforce.ibmcloud.com https://exchange.xforce.ibmcloud.com/vulnerabilities/28899
- issues.rpath.com https://issues.rpath.com/browse/RPL-614
- oval.cisecurity.org https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10305
Remediation
- idefense.com http://www.idefense.com/intelligence/vulnerabilities/display.php?id=412
- redhat.com http://www.redhat.com/support/errata/RHSA-2006-0665.html
- redhat.com http://www.redhat.com/support/errata/RHSA-2006-0666.html