Multiple Vendor X Font Server Remote Buffer Overrun Vulnerability

info
discussion
exploit
solution
references

Multiple Vendor X Font Server Remote Buffer Overrun Vulnerability

A remotely exploitable buffer overrun condition has been reported in the XFS font server, fs.auto used by multiple vendors. This vulnerability may be exploited by remote attackers to execute commands on the target host with privileges of user nobody.

This vulnerability has been reported fixed in XFree86 3.3.6 and later.