X.Org libXcursor '_XcursorFileHeaderCreate()' Function Remote Code Execution Vulnerability

The 'libXcursor' library is prone to a remote code-execution vulnerability because it fails to adequately bounds-check user-supplied data.

An attacker can exploit this vulnerability to execute arbitrary code with elevated privileges. Failed exploit attempts will likely cause denial-of-service conditions.

Versions prior to libXcursor 1.1.14 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus