Exploit X Window 4.0/4.1/4.2 - System Oversized Font Denial of Service

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
21518
Проверка EDB
  1. Пройдено
Автор
TOM VOGT
Тип уязвимости
DOS
Платформа
LINUX
CVE
null
Дата публикации
2002-06-10
Код:
source: https://www.securityfocus.com/bid/4966/info

X Window System behaves unpredictably when handling an overly large font size. If an attacker can pass an overly large font size to X Window System, it is possible to cause a denial of service condition.

Remote exploitation of this issue is possible via web clients or other applications which do not check that the font size is sane before passing it to the X Window System. This is reported to be a problem with xfs (X Font Server) and the libXfont component.

This is reported to affect various X Window System implementations, including XFree86.

Include a huge font size in your style sheet definition, e.g.:
body { font-size: 1666666px; }
 
Источник
www.exploit-db.com

Похожие темы