High

DATE	CVE	VULNERABILITY TITLE	RISK
2006-03-21	CVE-2006-0745	Local Privilege Escalation vulnerability in X.Org X Window Server X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended restrictions and (1) execute arbitrary code via the -modulepath command line option or (2) overwrite arbitrary files via -logfile. local low complexity x-org mandrakesoft redhat sun suse	7.2
2005-03-02	CVE-2005-0605	Integer Overflow vulnerability in libXPM Bitmap_unit scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow. network low complexity lesstif sgi x-org xfree86-project altlinux mandrakesoft redhat suse	7.5
2004-10-20	CVE-2004-0688	Remote Buffer Overflow vulnerability in libXpm Image Decoding Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) ParsePixels, and (5) ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to execute arbitrary code via a malformed XPM image file. network low complexity x-org xfree86-project openbsd suse	7.5
2004-08-18	CVE-2004-0419	XDM in XFree86 opens a chooserFd TCP socket even when DisplayManager.requestPort is 0, which could allow remote attackers to connect to the port, in violation of the intended restrictions. network low complexity x-org xfree86-project gentoo	7.5