Unrated severityNVD Advisory· Published Apr 8, 2011· Updated Apr 29, 2026
CVE-2011-0465
CVE-2011-0465
Description
xrdb.c in xrdb before 1.0.9 in X.Org X11R7.6 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in a hostname obtained from a (1) DHCP or (2) XDMCP message.
Affected products
7cpe:2.3:a:matthias_hopf:xrdb:*:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:matthias_hopf:xrdb:*:*:*:*:*:*:*:*range: <=1.0.8
- cpe:2.3:a:matthias_hopf:xrdb:1.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:matthias_hopf:xrdb:1.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:matthias_hopf:xrdb:1.0.4:*:*:*:*:*:*:*
- cpe:2.3:a:matthias_hopf:xrdb:1.0.5:*:*:*:*:*:*:*
- cpe:2.3:a:matthias_hopf:xrdb:1.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:matthias_hopf:xrdb:1.0.7:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
29- cgit.freedesktop.org/xorg/app/xrdb/commit/nvdPatch
- lists.freedesktop.org/archives/xorg-announce/2011-April/001635.htmlnvdPatch
- lists.freedesktop.org/archives/xorg-announce/2011-April/001636.htmlnvdPatch
- bugzilla.redhat.com/show_bug.cginvdPatch
- secunia.com/advisories/44040nvdVendor Advisory
- www.vupen.com/english/advisories/2011/0880nvdVendor Advisory
- lists.fedoraproject.org/pipermail/package-announce/2011-April/057928.htmlnvd
- lists.opensuse.org/opensuse-security-announce/2011-04/msg00002.htmlnvd
- secunia.com/advisories/44010nvd
- secunia.com/advisories/44012nvd
- secunia.com/advisories/44082nvd
- secunia.com/advisories/44122nvd
- secunia.com/advisories/44123nvd
- secunia.com/advisories/44193nvd
- slackware.com/security/viewer.phpnvd
- www.debian.org/security/2011/dsa-2213nvd
- www.mandriva.com/security/advisoriesnvd
- www.redhat.com/support/errata/RHSA-2011-0432.htmlnvd
- www.redhat.com/support/errata/RHSA-2011-0433.htmlnvd
- www.securityfocus.com/bid/47189nvd
- www.securitytracker.com/idnvd
- www.ubuntu.com/usn/USN-1107-1nvd
- www.vupen.com/english/advisories/2011/0889nvd
- www.vupen.com/english/advisories/2011/0906nvd
- www.vupen.com/english/advisories/2011/0929nvd
- www.vupen.com/english/advisories/2011/0966nvd
- www.vupen.com/english/advisories/2011/0975nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/66585nvd
- lwn.net/Articles/437150/nvd
News mentions
0No linked articles in our index yet.