Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2661

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-2661
Last Modified 07 Mar 2011 09:36:43
Published 30 May 2006 03:02:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2661

Summary

ftutil.c in Freetype before 2.2 allows remote attackers to cause a denial of service (crash) via a crafted font file that triggers a null dereference.

Vulnerable Systems

Application

  • Freetype 2.0.9

  • Freetype 2.1

  • Freetype 2.1.10

  • Freetype 2.1.3

  • Freetype 2.1.4

  • Freetype 2.1.5

  • Freetype 2.1.6

  • Freetype 2.1.7

  • Freetype 2.1.8

  • Freetype 2.1.8 Rc1

  • Freetype 2.1.9


References

MISC - https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=183676

VUPEN - ADV-2007-0381

CONFIRM - https://issues.rpath.com/browse/RPL-429

UBUNTU - USN-291-1

BID - 18329

BUGTRAQ - 20060612 rPSA-2006-0100-1 freetype

REDHAT - RHSA-2006:0500

MANDRIVA - MDKSA-2006:099

DEBIAN - DSA-1095

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-176.htm

SUNALERT - 102705

SECTRACK - 1016520

SECUNIA - 23939

SECUNIA - 21701

SECUNIA - 21385

SECUNIA - 21135

SECUNIA - 21062

SECUNIA - 20791

SECUNIA - 20638

SECUNIA - 20591

SECUNIA - 20525

SUSE - SUSE-SA:2006:037

SGI - 20060701-01-U


Last Updated: 27 May 2016 10:42:42