xloadimage -- arbitrary command execution when handling compressed files

🗓️ 18 Feb 2005 00:00:00Reported by FreeBSDType

Arbitrary command execution risk in xloadimage from unsanitized file names in decompression.

Reporter	Title	Published	Views	Family All 34
Tenable Nessus	FreeBSD : xloadimage -- arbitrary command execution when handling compressed files (310d0087-0fde-4929-a41f-96f17c5adffe)	13 Jul 200500:00	–	nessus
Tenable Nessus	CentOS 3 : xloadimage (CESA-2005:332-01)	29 Jun 201300:00	–	nessus
Tenable Nessus	Fedora Core 3 : xloadimage-4.1-34.FC3 (2005-237)	12 Sep 200500:00	–	nessus
Tenable Nessus	Fedora Core 2 : xloadimage-4.1-34.FC2 (2005-236)	19 May 200500:00	–	nessus
Tenable Nessus	CentOS 3 / 4 : xloadimage (CESA-2005:332)	5 Jul 200600:00	–	nessus
Tenable Nessus	RHEL 4 : xloadimage (RHSA-2005:332)	19 Apr 200500:00	–	nessus
Tenable Nessus	Mandrake Linux Security Advisory : xli (MDKSA-2005:076)	21 Apr 200500:00	–	nessus
Tenable Nessus	Debian DSA-694-1 : xloadimage - missing input sanitising, integer overflow	21 Mar 200500:00	–	nessus
Tenable Nessus	Debian DSA-695-1 : xli - buffer overflow, input sanitising, integer overflow	21 Mar 200500:00	–	nessus
Tenable Nessus	GLSA-200503-05 : xli, xloadimage: Multiple vulnerabilities	4 Mar 200500:00	–	nessus

Vulners

Node

xli xliRange≤1.17.0_1

xloadimage xloadimageRange≤4.1.10

Source	Link
bugs	www.bugs.gentoo.org/show_bug.cgi

OS	OS Version	Architecture	Package	Package Version	Filename
FreeBSD	any	noarch	xli	1.17.0_1	UNKNOWN
FreeBSD	any	noarch	xloadimage	4.1.10	UNKNOWN

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

18 Feb 2005 00:00Current

6.5Medium risk

Vulners AI Score6.5

CVSS27.5

EPSS0.0073