Lucene search
HistoryMar 31, 2003 - 5:00 a.m.
CVE-2003-0146
netpbm
vulnerabilities
denial of service
buffer overflow
arbitrary code execution
nvd
cve-2003-0146
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8 High
AI Score
Confidence
High
0.09 Low
EPSS
Percentile
94.7%
Multiple vulnerabilities in NetPBM 9.20 and earlier, and possibly other versions, may allow remote attackers to cause a denial of service or execute arbitrary code via “maths overflow errors” such as (1) integer signedness errors or (2) integer overflows, which lead to buffer overflows.
Affected configurations
Node
netpbmnetpbmRange≤9.20
| CPE | Name | Operator | Version |
|---|---|---|---|
| netpbm:netpbm | netpbm | le | 9.20 |
References
Related
debian
debian
osv
osv
netpbm-free - math overflow errors
2003-03-17 00:00:00
redhat
redhat
(RHSA-2003:061) netpbm security update
2003-03-31 00:00:00
debiancve
debiancve
CVE-2003-0146
2003-03-31 05:00:00
securityvulns
securityvulns
MDKSA-2003:036 - Updated netpbm packages fix math overflow errors
2003-03-26 00:00:00
cvelist
cvelist
CVE-2003-0146
2003-03-18 05:00:00
nessus
nessus
RHEL 2.1 : netpbm (RHSA-2003:061)
2004-07-06 00:00:00
Mandrake Linux Security Advisory : netpbm (MDKSA-2003:036)
2004-07-31 00:00:00
Debian DSA-263-1 : netpbm-free - math overflow errors
2004-09-29 00:00:00
openvas
openvas
Debian Security Advisory DSA 263-1 (netpbm-free)
2008-01-17 00:00:00
Debian Security Advisory DSA 263-1 (netpbm-free)
2008-01-17 00:00:00
cert
cert
NetPBM contains multiple buffer overflow vulnerabilities
2003-03-17 00:00:00
nvd
nvd
CVE-2003-0146
2003-03-31 05:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8 High
AI Score
Confidence
High
0.09 Low
EPSS
Percentile
94.7%
Related for CVE-2003-0146