CVE-2003-0581

EPSS 1.81% · P83 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2003-0581

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

X Fontserver for Truetype fonts (xfstt) 1.4 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a (1) FS_QueryXExtents8 or (2) FS_QueryXBitmaps8 packet, and possibly other types of packets, with a large num_ranges value, which causes an out-of-bounds array access.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

xfstt远程拒绝服务攻击漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

X Fontserver Truetype fonts用于对TrueType字体进行解析。 xfstt由于不正确处理用户提交的恶意包，远程攻击者可以利用这个漏洞触发缓冲区溢出，进行拒绝服务攻击。问题存在于xfstt.cc文件中的working()函数调用中，对来自外部接收到的数据缺少充分边界缓冲区检查，攻击者发送包含超大'req->num_ranges'值的包给xfstt服务器，可导致触发缓冲区溢出，也可能以xfstt进程权限在系统上执行任意指令。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2003-0581

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2003-0581

Please Login to view more intelligence information

http://www.debian.org/security/2003/dsa-360vendor-advisoryx_refsource_DEBIAN
http://marc.info/?l=bugtraq&m=105829691405446&w=2mailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2003-0581

Same Patch Batch · n/a · 2003-07-25 · 26 CVEs total

CVE-2003-0462		Linux 2.4内核execve()系统调用竞争条件洞
CVE-2003-0599		phpGroupWare虚拟文件系统(VFS)未知漏洞
CVE-2003-0597		SCO OpenServer Display本地权限提升漏洞
CVE-2003-0596		FDClone本地不安全临时目录创建漏洞
CVE-2003-0595		WiTango Application Server和Tango缓冲区溢出漏洞
CVE-2003-0567		Cisco IOS IPv4报文处理拒绝服务攻击漏洞
CVE-2003-0562		Novell Netware Enterprise Web Server CGI2Perl.NLM缓冲区溢出漏洞
CVE-2003-0552		Linux漏洞
CVE-2003-0551		Linux STP协议执行过程服务拒绝漏洞
CVE-2003-0550		Linux STP协议漏洞
CVE-2003-0525		Windows NT 4.0系统IBM JVM远程拒绝服务攻击漏洞(MS03-029)
CVE-2003-0502		Apple QuickTime / Darwin Streaming服务器服务拒绝漏洞
CVE-2003-0464		Linux kernel RPC代码漏洞
CVE-2003-0230		Microsoft SQL Server / MSDE命名管道权限提升漏洞
CVE-2003-0461		Linux Kernel串行驱动Proc文件信息泄露漏洞
CVE-2003-0460		Apache 安全漏洞
CVE-2003-0426		Apple QuickTime / Darwin Streaming Server特权提升漏洞
CVE-2003-0425		Apple QuickTime/Darwin Streaming Server目录遍历漏洞
CVE-2003-0424		Apple QuickTime/Darwin Streaming服务器脚本源泄漏漏洞
CVE-2003-0423		Apple QuickTime/Darwin Streaming Server parse_xml.cgi资源耗尽漏洞

Showing top 20 of 26 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2003-0581

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2003-0581

I. Basic Information for CVE-2003-0581

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2003-0581

III. Intelligence Information for CVE-2003-0581

Same Patch Batch · n/a · 2003-07-25 · 26 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2003-0581

Leave a comment