National Vulnerability Database

National Vulnerability Database

National Vulnerability
Database

CVE-2008-1808 Detail

Description

Multiple off-by-one errors in FreeType2 before 2.3.6 allow context-dependent attackers to execute arbitrary code via (1) a crafted table in a Printer Font Binary (PFB) file or (2) a crafted SHC instruction in a TrueType Font (TTF) file, which triggers a heap-based buffer overflow.

Source:  MITRE      Last Modified:  06/16/2008

Quick Info

CVE Dictionary Entry:
CVE-2008-1808
Original release date:
06/16/2008
Last revised:
09/28/2017
Source:
US-CERT/NIST

Impact

CVSS Severity (version 2.0):
CVSS v2 Base Score:
7.5 HIGH
Vector:
(AV:N/AC:L/Au:N/C:P/I:P/A:P) (legend)
Impact Subscore:
6.4
Exploitability Subscore:
10.0
CVSS Version 2 Metrics:
Access Vector:
Network exploitable
Access Complexity:
Low
Authentication:
Not required to exploit
Impact Type:
Provides user account access, Allows partial confidentiality, integrity, and availability violation; Allows unauthorized disclosure of information; Allows disruption of service

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

Hyperlink Resource Type Source Name
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=717 External Source IDEFENSE 20080610 Multiple Vendor FreeType2 Multiple Heap Overflow Vulnerabilities
http://lists.apple.com/archives/security-announce//2008/Sep/msg00003.html External Source APPLE APPLE-SA-2008-09-09
http://lists.apple.com/archives/security-announce//2008/Sep/msg00004.html External Source APPLE APPLE-SA-2008-09-12
http://lists.apple.com/archives/security-announce/2009/Feb/msg00000.html External Source APPLE APPLE-SA-2009-02-12
http://lists.grok.org.uk/pipermail/full-disclosure/2008-August/064118.html External Source FULLDISC 20080830 VMSA-2008-0014 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Server, VMware ESX address information disclosure, privilege escalation and other security issues.
http://lists.opensuse.org/opensuse-security-announce/2008-07/msg00001.html External Source SUSE SUSE-SR:2008:014
http://security.gentoo.org/glsa/glsa-200806-10.xml External Source GENTOO GLSA-200806-10
http://security.gentoo.org/glsa/glsa-201209-25.xml External Source GENTOO GLSA-201209-25
http://securitytracker.com/id?1020240 External Source SECTRACK 1020240
http://sourceforge.net/project/shownotes.php?group_id=3157&release_id=605780 External Source MISC http://sourceforge.net/project/shownotes.php?group_id=3157&release_id=605780
http://sunsolve.sun.com/search/document.do?assetkey=1-26-239006-1 External Source SUNALERT 239006
http://support.apple.com/kb/HT3026 External Source CONFIRM http://support.apple.com/kb/HT3026
http://support.apple.com/kb/HT3129 External Source CONFIRM http://support.apple.com/kb/HT3129
http://support.apple.com/kb/HT3438 External Source CONFIRM http://support.apple.com/kb/HT3438
http://support.avaya.com/elmodocs2/security/ASA-2008-318.htm External Source CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2008-318.htm
http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0255 External Source CONFIRM http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0255
http://www.mandriva.com/security/advisories?name=MDVSA-2008:121 External Source MANDRIVA MDVSA-2008:121
http://www.redhat.com/support/errata/RHSA-2008-0556.html External Source REDHAT RHSA-2008:0556
http://www.redhat.com/support/errata/RHSA-2008-0558.html External Source REDHAT RHSA-2008:0558
http://www.redhat.com/support/errata/RHSA-2009-0329.html External Source REDHAT RHSA-2009:0329
http://www.securityfocus.com/archive/1/archive/1/495497/100/0/threaded External Source BUGTRAQ 20080814 rPSA-2008-0255-1 freetype
http://www.securityfocus.com/archive/1/archive/1/495869/100/0/threaded External Source BUGTRAQ 20080830 VMSA-2008-0014 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Server, VMware ESX address information disclosure, privilege escalation and other security issues.
http://www.securityfocus.com/bid/29637 Patch External Source BID 29637
http://www.securityfocus.com/bid/29639 Patch External Source BID 29639
http://www.ubuntu.com/usn/usn-643-1 External Source UBUNTU USN-643-1
http://www.vmware.com/security/advisories/VMSA-2008-0014.html External Source CONFIRM http://www.vmware.com/security/advisories/VMSA-2008-0014.html
http://www.vmware.com/support/player/doc/releasenotes_player.html External Source CONFIRM http://www.vmware.com/support/player/doc/releasenotes_player.html
http://www.vmware.com/support/player2/doc/releasenotes_player2.html External Source CONFIRM http://www.vmware.com/support/player2/doc/releasenotes_player2.html
http://www.vmware.com/support/server/doc/releasenotes_server.html External Source CONFIRM http://www.vmware.com/support/server/doc/releasenotes_server.html
http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html External Source CONFIRM http://www.vmware.com/support/ws55/doc/releasenotes_ws55.html
http://www.vmware.com/support/ws6/doc/releasenotes_ws6.html External Source CONFIRM http://www.vmware.com/support/ws6/doc/releasenotes_ws6.html
http://www.vupen.com/english/advisories/2008/1794 External Source VUPEN ADV-2008-1794
http://www.vupen.com/english/advisories/2008/1876/references External Source VUPEN ADV-2008-1876
http://www.vupen.com/english/advisories/2008/2423 External Source VUPEN ADV-2008-2423
http://www.vupen.com/english/advisories/2008/2466 External Source VUPEN ADV-2008-2466
http://www.vupen.com/english/advisories/2008/2525 External Source VUPEN ADV-2008-2525
http://www.vupen.com/english/advisories/2008/2558 External Source VUPEN ADV-2008-2558
https://issues.rpath.com/browse/RPL-2608 External Source CONFIRM https://issues.rpath.com/browse/RPL-2608
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11188 External Source OVAL oval:org.mitre.oval:def:11188
https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00717.html External Source FEDORA FEDORA-2008-5425
https://www.redhat.com/archives/fedora-package-announce/2008-June/msg00721.html External Source FEDORA FEDORA-2008-5430

References to Check Content

Identifier:
oval:org.mitre.oval:def:11188
Check System:
http://oval.mitre.org/XMLSchema/oval-definitions-5
Hyperlink:
http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:11188

Technical Details

Vulnerability Type (View All)

Change History 2 change records found - show changes