Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1861

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-1861
Last Modified 07 Mar 2011 12:00:00
Published 23 May 2006 06:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-1861

Summary

Multiple integer overflows in FreeType before 2.2 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attack vectors related to (1) bdf/bdflib.c, (2) sfnt/ttcmap.c, (3) cff/cffgload.c, and (4) the read_lwfn function and a crafted LWFN file in base/ftmac.c. NOTE: item 4 was originally identified by CVE-2006-2493.

Vulnerable Systems

Application

  • Freetype 2.0.9

  • Freetype 2.1.10

  • Freetype 2.1.3

  • Freetype 2.1.4

  • Freetype 2.1.5

  • Freetype 2.1.6

  • Freetype 2.1.7

  • Freetype 2.1.8

  • Freetype 2.1.8 Rc1

  • Freetype 2.1.9


References

XF - freetype-lwfn-overflow(26553)

BID - 18034

CONFIRM - http://sourceforge.net/project/shownotes.php?release_id=416463

SECUNIA - 20100

FEDORA - FEDORA-2009-5644

FEDORA - FEDORA-2009-5558

CONFIRM - https://issues.rpath.com/browse/RPL-429

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=502565

CONFIRM - https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=190593#c8

CONFIRM - https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=190593

CONFIRM - https://bugzilla.redhat.com/bugzilla/attachment.cgi?id=128606

VUPEN - ADV-2007-0381

VUPEN - ADV-2006-1868

UBUNTU - USN-291-1

BUGTRAQ - 20060612 rPSA-2006-0100-1 freetype

REDHAT - RHSA-2009:1062

REDHAT - RHSA-2009:0329

REDHAT - RHSA-2006:0500

MANDRIVA - MDKSA-2006:099

GENTOO - GLSA-200710-09

DEBIAN - DSA-1095

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-176.htm

CONFIRM - http://support.apple.com/kb/HT3438

SUNALERT - 102705

SECTRACK - 1016522

GENTOO - GLSA-200607-02

SECUNIA - 35233

SECUNIA - 35204

SECUNIA - 35200

SECUNIA - 33937

SECUNIA - 27271

SECUNIA - 27167

SECUNIA - 27162

SECUNIA - 23939

SECUNIA - 21701

SECUNIA - 21385

SECUNIA - 21135

SECUNIA - 21062

SECUNIA - 21000

SECUNIA - 20791

SECUNIA - 20638

SECUNIA - 20591

SECUNIA - 20525

SUSE - SUSE-SA:2006:037

SUSE - SUSE-SR:2007:021

APPLE - APPLE-SA-2009-02-12

SGI - 20060701-01-U

Related Patches

Apple 2009-02-12 Security Update 2009-001 Server (Tiger PPC)

Apple 2009-02-12 Security Update 2009-001 (Tiger PPC)

Apple 2009-02-12 Security Update 2009-001 Server (Tiger Intel)

Apple 2009-02-12 Security Update 2009-001 (Tiger Intel)


Last Updated: 27 May 2016 10:42:14