CVE-2017-12178
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2017-12178
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
xorg-x11-server before 1.19.5 had wrong extra length check in ProcXIChangeHierarchy function allowing malicious X client to cause X server to crash or possibly execute arbitrary code.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
未经检查的错误条件
Source: NVD (National Vulnerability Database)
Vulnerability Title
xorg-x11-server 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
xorg-x11-server是多个厂商操作系统中所捆绑的X窗口系统显示服务器。 xorg-x11-server 1.19.5之前版本中的‘ProcXIChangeHierarchy’函数存在安全漏洞,该漏洞源于错误的额外长度检测。攻击者可利用该漏洞造成拒绝服务(崩溃)或可能执行任意代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| The X.Org Foundation | xorg-x11-server | before 1.19.5 | - |
II. Public POCs for CVE-2017-12178
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2017-12178
Please Login to view more intelligence information
- https://bugzilla.redhat.com/show_bug.cgi?id=1509219x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2017-12178
Same Patch Batch · The X.Org Foundation · 2018-01-24 · 11 CVEs total
| CVE-2017-12176 | xorg-x11-server 安全漏洞 | |
| CVE-2017-12177 | xorg-x11-server 数字错误漏洞 | |
| CVE-2017-12179 | xorg-x11-server 数字错误漏洞 | |
| CVE-2017-12180 | xorg-x11-server 安全漏洞 | |
| CVE-2017-12181 | xorg-x11-server 安全漏洞 | |
| CVE-2017-12182 | xorg-x11-server 安全漏洞 | |
| CVE-2017-12183 | xorg-x11-server 安全漏洞 | |
| CVE-2017-12184 | xorg-x11-server 安全漏洞 | |
| CVE-2017-12186 | xorg-x11-server 安全漏洞 | |
| CVE-2017-12187 | xorg-x11-server 安全漏洞 |
IV. Related Vulnerabilities
Same weakness: CWE-391
- CVE-2024-52316
Apache Tomcat: Authentication bypass when using Jakarta Auth - CVE-2022-20849
Cisco IOS XR Software Broadband Network Gateway PPPoE Denial - CVE-2024-23326
Envoy incorrectly accepts HTTP 200 response for entering upg - CVE-2023-32871
MediaTek 芯片 安全漏洞 - CVE-2023-0572
Unchecked Error Condition in froxlor/froxlor
V. Comments for CVE-2017-12178
No comments yet