Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2006-1550HistoryMar 30, 2006 - 11:02 p.m.
CVE-2006-1550
2006-03-3023:02:00
Debian Security Bug Tracker
security-tracker.debian.org
6
7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.013 Low
EPSS
Percentile
85.8%
Multiple buffer overflows in the xfig import code (xfig-import.c) in Dia 0.87 and later before 0.95-pre6 allow user-assisted attackers to have an unknown impact via a crafted xfig file, possibly involving an invalid (1) color index, (2) number of points, or (3) depth.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | dia | < 0.94.0-18 | dia_0.94.0-18_all.deb |
| Debian | 11 | all | dia | < 0.94.0-18 | dia_0.94.0-18_all.deb |
| Debian | 999 | all | dia | < 0.94.0-18 | dia_0.94.0-18_all.deb |
| Debian | 13 | all | dia | < 0.94.0-18 | dia_0.94.0-18_all.deb |
Related
redhat
redhat
(RHSA-2006:0280) dia security update
2006-05-03 00:00:00
centos
centos
dia security update
2006-05-03 17:52:34
dia security update
2006-05-04 01:13:24
openvas
openvas
Debian: Security Advisory (DSA-1025-1)
2008-01-17 00:00:00
FreeBSD Ports: dia, dia-gnome
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200604-14 (dia)
2008-09-24 00:00:00
freebsd
freebsd
dia -- XFig Import Plugin Buffer Overflow
2006-03-31 00:00:00
nessus
nessus
Fedora Core 4 : dia-0.94-13.fc4 (2006-261)
2006-04-08 00:00:00
GLSA-200604-14 : Dia: Arbitrary code execution through XFig import
2006-04-26 00:00:00
Mandrake Linux Security Advisory : dia (MDKSA-2006:062)
2006-04-04 00:00:00
nvd
nvd
CVE-2006-1550
2006-03-30 23:02:00
ubuntu
ubuntu
dia vulnerabilities
2006-04-03 00:00:00
cve
cve
CVE-2006-1550
2006-03-30 23:02:00
cvelist
cvelist
CVE-2006-1550
2006-03-30 23:00:00
prion
prion
Buffer overflow
2006-03-30 23:02:00
ubuntucve
ubuntucve
CVE-2006-1550
2006-03-30 00:00:00
gentoo
gentoo
Dia: Arbitrary code execution through XFig import
2006-04-23 00:00:00
osv
osv
dia - programming error
2006-04-06 00:00:00
7.6 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:C/I:C/A:C
0.013 Low
EPSS
Percentile
85.8%
Related for DEBIANCVE:CVE-2006-1550