X Window 4.0/4.1/4.2 – System Oversized Font Denial of Service

X Window 4.0/4.1/4.2 – System Oversized Font Denial of Service

漏洞ID 1053592 漏洞类型
发布时间 2002-06-10 更新时间 2002-06-10
图片[1]-X Window 4.0/4.1/4.2 – System Oversized Font Denial of Service-安全小百科CVE编号 N/A
图片[2]-X Window 4.0/4.1/4.2 – System Oversized Font Denial of Service-安全小百科CNNVD-ID N/A
漏洞平台 Linux CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/21518
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/4966/info

X Window System behaves unpredictably when handling an overly large font size. If an attacker can pass an overly large font size to X Window System, it is possible to cause a denial of service condition.

Remote exploitation of this issue is possible via web clients or other applications which do not check that the font size is sane before passing it to the X Window System. This is reported to be a problem with xfs (X Font Server) and the libXfont component.

This is reported to affect various X Window System implementations, including XFree86.

Include a huge font size in your style sheet definition, e.g.:
body { font-size: 1666666px; }

相关推荐: Admintool mode 0777 Vulnerability

Admintool mode 0777 Vulnerability 漏洞ID 1105000 漏洞类型 Configuration Error 发布时间 1998-05-07 更新时间 1998-05-07 CVE编号 N/A CNNVD-ID N/A 漏洞平…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享