Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0747

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-0747
Last Modified 11 Oct 2011 12:00:00
Published 23 May 2006 06:06:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0747

Summary

Integer underflow in Freetype before 2.2 allows remote attackers to cause a denial of service (crash) via a font file with an odd number of blue values, which causes the underflow when decrementing by 2 in a context that assumes an even number of values.

Vulnerable Systems

Application

  • Freetype 2.1


References

CERT - TA09-133A

CONFIRM - https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=183676

CONFIRM - https://issues.rpath.com/browse/RPL-429

VUPEN - ADV-2009-1297

VUPEN - ADV-2007-0381

UBUNTU - USN-291-1

BID - 18326

BUGTRAQ - 20060612 rPSA-2006-0100-1 freetype

REDHAT - RHSA-2006:0500

MANDRIVA - MDKSA-2006:099

DEBIAN - DSA-1095

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-176.htm

CONFIRM - http://support.apple.com/kb/HT3549

SUNALERT - 102705

SECTRACK - 1016522

SECUNIA - 35074

SECUNIA - 23939

SECUNIA - 21701

SECUNIA - 21385

SECUNIA - 21135

SECUNIA - 21062

SECUNIA - 20791

SECUNIA - 20638

SECUNIA - 20591

SECUNIA - 20525

SUSE - SUSE-SA:2006:037

APPLE - APPLE-SA-2009-05-12

SGI - 20060701-01-U

Related Patches

Apple 2009-05-12 Security Update 2009-002 Server (Tiger PPC)

Apple 2009-05-12 Security Update 2009-002 (Tiger PPC)

Apple 2009-05-12 Security Update 2009-002 (Tiger Intel)


Last Updated: 27 May 2016 10:41:46