Medium

DATE	CVE	VULNERABILITY TITLE	RISK
2008-01-18	CVE-2007-6428	Local Privilege Escalation and Information Disclosure vulnerability in RETIRED: X.Org X Server The ProcGetReservedColormapEntries function in the TOG-CUP extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to read the contents of arbitrary memory locations via a request containing a 32-bit value that is improperly used as an array index. network low complexity x-org	5.0
2008-01-18	CVE-2007-5958	Information Exposure vulnerability in X.Org Xserver X.Org Xserver before 1.4.1 allows local users to determine the existence of arbitrary files via a filename argument in the -sp option to the X program, which produces different error messages depending on whether the filename exists. network low complexity x-org CWE-200	5.0
2007-05-02	CVE-2007-2437	Denial of Service vulnerability in X.Org X Window System Xserver XRender Extension Divide by Zero The X render (Xrender) extension in X.org X Window System 7.0, 7.1, and 7.2, with Xserver 1.3.0 and earlier, allows remote authenticated users to cause a denial of service (daemon crash) via crafted values to the (1) XRenderCompositeTrapezoids and (2) XRenderAddTraps functions, which trigger a divide-by-zero error. low complexity x-org	5.5