Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0197

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-0197
Last Modified 05 Sep 2008 04:58:36
Published 13 Jan 2006 06:03:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0197

Summary

The XClientMessageEvent struct used in certain components of X.Org 6.8.2 and earlier, possibly including (1) the X server and (2) Xlib, uses a "long" specifier for elements of the l array, which results in inconsistent sizes in the struct on 32-bit versus 64-bit platforms, and might allow attackers to cause a denial of service (application crash) and possibly conduct other attacks.

Vulnerable Systems

Application

  • X.org 6.8.2


References

BUGTRAQ - 20060108 xorg server 6.8.2 and below on 64bit arch


Last Updated: 27 May 2016 10:41:34