Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3467

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-3467
Last Modified 12 Oct 2011 12:00:00
Published 21 Jul 2006 10:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-3467

Summary

Integer overflow in FreeType before 2.2 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PCF file, as demonstrated by the Red Hat bad1.pcf test file, due to a partial fix of CVE-2006-1861.

Vulnerable Systems

Application

  • Freetype 2.1


References

REDHAT - RHSA-2006:0500

VUPEN - ADV-2007-0381

VUPEN - ADV-2006-4522

VUPEN - ADV-2006-4502

CONFIRM - http://www.vmware.com/download/esx/esx-254-200610-patch.html

CONFIRM - http://www.vmware.com/download/esx/esx-213-200610-patch.html

CONFIRM - http://www.vmware.com/download/esx/esx-202-200610-patch.html

UBUNTU - USN-341-1

UBUNTU - USN-324-1

TRUSTIX - 2006-0052

BUGTRAQ - 20061113 VMSA-2006-0008 - VMware ESX Server 2.0.2 Upgrade Patch 2

BUGTRAQ - 20061113 VMSA-2006-0005 - VMware ESX Server 2.5.4 Upgrade Patch 1

BUGTRAQ - 20061113 VMSA-2006-0007 - VMware ESX Server 2.1.3 Upgrade Patch 2

BUGTRAQ - 20061113 VMSA-2006-0006 - VMware ESX Server 2.5.3 Upgrade Patch 4

BUGTRAQ - 20060825 rPSA-2006-0157-1 xorg-x11 xorg-x11-fonts xorg-x11-tools xorg-x11-xfs

REDHAT - RHSA-2006:0635

REDHAT - RHSA-2006:0634

MANDRIVA - MDKSA-2006:148

MANDRIVA - MDKSA-2006:129

DEBIAN - DSA-1193

DEBIAN - DSA-1178

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-284.htm

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-186.htm

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-176.htm

CONFIRM - http://support.apple.com/kb/HT3438

SUNALERT - 102705

SECTRACK - 1016522

GENTOO - GLSA-200609-04

SECUNIA - 33937

SECUNIA - 27271

SECUNIA - 23939

SECUNIA - 23400

SECUNIA - 22907

SECUNIA - 22875

SECUNIA - 22332

SECUNIA - 22027

SECUNIA - 21836

SECUNIA - 21798

SECUNIA - 21793

SECUNIA - 21701

SECUNIA - 21626

SECUNIA - 21606

SECUNIA - 21567

SECUNIA - 21566

SECUNIA - 21285

SECUNIA - 21232

SECUNIA - 21144

SECUNIA - 21135

SUSE - SUSE-SA:2006:045

SUSE - SUSE-SR:2007:021

APPLE - APPLE-SA-2009-02-12

MISC - http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=190593

SGI - 20060701-01-U

Related Patches

Apple 2009-02-12 Security Update 2009-001 Server (Tiger PPC)

Apple 2009-02-12 Security Update 2009-001 (Tiger PPC)

Apple 2009-02-12 Security Update 2009-001 Server (Tiger Intel)

Apple 2009-02-12 Security Update 2009-001 (Tiger Intel)


Last Updated: 27 May 2016 10:43:01