#VU33894 Input validation error in libXcursor - CVE-2013-2003

Cybersecurity Help s.r.o.

Published: 2013-06-15 | Updated: 2020-08-04

Vulnerability identifier: #VU33894

Vulnerability risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2013-2003

CWE-ID: CWE-20

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
libXcursor
Universal components / Libraries / Libraries used by multiple products

Vendor: X.org

Description

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

Integer overflow in X.org libXcursor 1.1.13 and earlier allows X servers to trigger allocation of insufficient memory and a buffer overflow via vectors related to the _XcursorFileHeaderCreate function.

Mitigation
Install update from vendor's website.

Vulnerable software versions

libXcursor: 1.1.5.2 - 1.1.13

External links
https://lists.fedoraproject.org/pipermail/package-announce/2013-May/106791.html
https://www.debian.org/security/2013/dsa-2681
https://www.openwall.com/lists/oss-security/2013/05/23/3
https://www.securityfocus.com/bid/60121
https://www.ubuntu.com/usn/USN-1856-1
https://www.x.org/wiki/Development/Security/Advisory-2013-05-23

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Amazon Linux AMI update for libX11, libXcursor, libXfixes, libXi, libXrandr, libXrender, libXres, libXt, libXv, libXvMC, libXxf86dga, libXxf86vm, libdmx, xorg-x11-proto-devel

Input validation error in X libXcursor

Input validation error in libxcursor (Alpine package)