Integer overflow in ALLOCATE_LOCAL in the ProcXCMiscGetXIDList function in the XC-MISC extension in the X.Org X11 server (xserver) 7.1-1.1.0, and other versions before 20070403, allows remote authenticated users to execute arbitrary code via a large expression, which results in memory corruption.
Max CVSS
9.0
EPSS Score
2.46%
Published
2007-04-06
Updated
2018-10-16
CVE-1999-0526
Public exploit
An X server's access control is disabled (e.g. through an "xhost +" command) and allows anyone to connect to the server.
Max CVSS
10.0
EPSS Score
80.74%
Published
1997-07-01
Updated
2008-09-09
2 vulnerabilities found