CVE-2013-2003

{"id": "CVE-2013-2003", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2013-06-15T20:55:00.977", "references": [{"url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106791.html", "source": "secalert@redhat.com"}, {"url": "http://www.debian.org/security/2013/dsa-2681", "source": "secalert@redhat.com"}, {"url": "http://www.openwall.com/lists/oss-security/2013/05/23/3", "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/bid/60121", "source": "secalert@redhat.com"}, {"url": "http://www.ubuntu.com/usn/USN-1856-1", "source": "secalert@redhat.com"}, {"url": "http://www.x.org/wiki/Development/Security/Advisory-2013-05-23", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://lists.fedoraproject.org/pipermail/package-announce/2013-May/106791.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.debian.org/security/2013/dsa-2681", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.openwall.com/lists/oss-security/2013/05/23/3", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/60121", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.ubuntu.com/usn/USN-1856-1", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.x.org/wiki/Development/Security/Advisory-2013-05-23", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-189"}]}], "descriptions": [{"lang": "en", "value": "Integer overflow in X.org libXcursor 1.1.13 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the _XcursorFileHeaderCreate function."}, {"lang": "es", "value": "Un desbordamiento de entero en X.org libxcursor v1.1.13 y anteriores permite a los servidores X activar la asignaci\u00f3n de memoria insuficiente y provocar un desbordamiento de b\u00fafer a trav\u00e9s de vectores relacionados con la funci\u00f3n _XcursorFileHeaderCreate."}], "lastModified": "2024-11-21T01:50:50.550", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:x:libxcursor:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "02FAD8FA-ACE5-4A95-B743-F13AC2FFD9DD", "versionEndIncluding": "1.1.13"}, {"criteria": "cpe:2.3:a:x:libxcursor:1.1.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BF668B6C-49AC-480F-96FD-BAA45C9A2CBA"}, {"criteria": "cpe:2.3:a:x:libxcursor:1.1.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6BE9C983-9CA5-4365-9C2C-504F65C43423"}, {"criteria": "cpe:2.3:a:x:libxcursor:1.1.8:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0FE01E6D-7AAC-4FC5-B794-C78303EB1826"}, {"criteria": "cpe:2.3:a:x:libxcursor:1.1.9:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B5456EE4-77C4-4592-BCD1-C842D909A13C"}, {"criteria": "cpe:2.3:a:x:libxcursor:1.1.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7571B5D8-FA2C-4B9D-990F-62FFC110DCAD"}, {"criteria": "cpe:2.3:a:x:libxcursor:1.1.11:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "10D32116-3A90-4C97-925D-48BAA9BF428F"}, {"criteria": "cpe:2.3:a:x:libxcursor:1.1.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5200CB74-8A75-4D94-81A8-0C61BCFFAD3A"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}