CVE-2001-0955
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2001-0955
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Buffer overflow in fbglyph.c in XFree86 before 4.2.0, related to glyph clipping for large origins, allows attackers to cause a denial of service and possibly gain privileges via a large number of characters, possibly through the web page search form of KDE Konqueror or from an xterm command with a long title.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
XTerm超长标题栏使X服务器崩溃
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
X.Org X Window System(又名X11和X,X窗口系统)是X.Org基金会的一套以位图方式显示的软件窗口系统,它通过软件工具及架构协议来创建操作系统所用的图形用户界面。XFree86是XFree86 Project公司开发的关于X Window System的其中一个实现。 当将xterm的标题栏设置为一个超过9000字节的长字符串时,X server会崩溃。这允许恶意本地攻击者任意终止X服务器。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2001-0955
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2001-0955
请登录查看更多情报信息。
- http://www.xfree86.org/security/x_refsource_CONFIRM
- http://www.xfree86.org/4.2.0/RELNOTES2.html#2x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2001-0955
Same Patch Batch · n/a · 2002-02-02 · 110 CVEs total
| CVE-2001-1005 | Starfish TrueSync Desktop密码泄露漏洞 | |
| CVE-2001-1025 | PHP-Nuke远程SQL查询篡改 漏洞 | |
| CVE-2001-1024 | Entrust getAccess login.gas.bat和CGI脚本Java程序执行漏洞 | |
| CVE-2001-1023 | Xcache路径泄露漏洞 | |
| CVE-2001-1021 | Progress Software Ipswitch WS_FTP Server 安全漏洞 | |
| CVE-2001-1019 | SeaGlass Technologies sglMerchant 目录遍历漏洞 | |
| CVE-2001-1018 | Lotus Domino内部IP地址泄露漏洞 | |
| CVE-2001-1015 | Snes9x本地缓冲区溢出漏洞 | |
| CVE-2001-1014 | WebDiscount E-Shop 远程任意命令执行漏洞 | |
| CVE-2001-1013 | Red Hat Linux Apache 远程列举用户名漏洞 | |
| CVE-2001-1012 | screen漏洞 | |
| CVE-2001-1009 | Fetchmail POP3证书索引签名回复漏洞 | |
| CVE-2001-1007 | REX 5000 PDA Starfish Truesync Desktop密钥泄露漏洞 | |
| CVE-2001-1006 | Starfish TrueSync Desktop不能保护数据漏洞 | |
| CVE-2001-0989 | Richard Everitt Pileup缓冲区溢出漏洞 | |
| CVE-2001-0992 | ShopPlus shopping cart shopplus.cgi漏洞 | |
| CVE-2001-0991 | Proxomitron跨站脚本攻击漏洞 | |
| CVE-2001-0990 | Inter7 vpopmail MySQL 认证数据恢复漏洞 | |
| CVE-2001-0994 | Marconi ForeThought 7.1 Telnet 管理拒绝服务漏洞 | |
| CVE-2001-0988 | Arkeia Backup全域可读文件创建漏洞 |
Showing top 20 of 110 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
V. Comments for CVE-2001-0955
No comments yet