Vulnerabilities > XI Graphics

DATE CVE VULNERABILITY TITLE RISK
2004-05-04 CVE-2004-0368 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products
Double free vulnerability in dtlogin in CDE on Solaris, HP-UX, and other operating systems allows remote attackers to execute arbitrary code via a crafted XDMCP packet.
network
low complexity
open-group xi-graphics ibm CWE-119
critical
 10.0
10
2002-09-05 CVE-2002-0679 Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to execute arbitrary code via an argument to the _TT_CREATE_FILE procedure.
network
low complexity
caldera xi-graphics compaq hp ibm sun
critical
 10.0
10
2002-07-23 CVE-2002-0678 Symbolic Link vulnerability in Multiple Vendor CDE ToolTalk Database Server
CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure.
local
low complexity
caldera xi-graphics sgi compaq hp ibm sun
7.2
7.2
2002-07-23 CVE-2002-0677 CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure.
network
low complexity
caldera xi-graphics sgi compaq hp ibm sun
7.5
7.5
1999-06-25 CVE-1999-0778 Unspecified vulnerability in XI Graphics Accelerated-X Server 4/5
Buffer overflow in Xi Graphics Accelerated-X server allows local users to gain root access via a long display or query parameter.
local
low complexity
xi-graphics
7.2
7.2