Lucene search

[email protected]NVD:CVE-2004-0817

HistoryDec 31, 2004 - 5:00 a.m.

CVE-2004-0817

2004-12-3105:00:00

[email protected]

web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.3 High

AI Score

Confidence

Low

0.072 Low

EPSS

Percentile

94.0%

JSON

Multiple heap-based buffer overflows in the imlib BMP image handler allow remote attackers to execute arbitrary code via a crafted BMP file.

Affected configurations

NVD

Node

enlightenmentimlibMatch1.9

enlightenmentimlibMatch1.9.1

enlightenmentimlibMatch1.9.2

enlightenmentimlibMatch1.9.3

enlightenmentimlibMatch1.9.4

enlightenmentimlibMatch1.9.5

enlightenmentimlibMatch1.9.6

enlightenmentimlibMatch1.9.7

enlightenmentimlibMatch1.9.8

enlightenmentimlibMatch1.9.9

enlightenmentimlibMatch1.9.10

enlightenmentimlibMatch1.9.11

enlightenmentimlibMatch1.9.12

enlightenmentimlibMatch1.9.13

enlightenmentimlibMatch1.9.14

enlightenmentimlib2Match1.0

enlightenmentimlib2Match1.0.1

enlightenmentimlib2Match1.0.2

enlightenmentimlib2Match1.0.3

enlightenmentimlib2Match1.0.4

enlightenmentimlib2Match1.0.5

enlightenmentimlib2Match1.1

enlightenmentimlib2Match1.1.1

imagemagickimagemagickMatch5.3.3

imagemagickimagemagickMatch5.4.3

imagemagickimagemagickMatch5.4.4.5

imagemagickimagemagickMatch5.4.7

imagemagickimagemagickMatch5.4.8

imagemagickimagemagickMatch5.4.8.2.1.1.0

imagemagickimagemagickMatch5.5.3.2.1.2.0

imagemagickimagemagickMatch5.5.6.0_2003-04-09

imagemagickimagemagickMatch5.5.7

imagemagickimagemagickMatch6.0.2

sunjava_desktop_systemMatch2.0

sunjava_desktop_systemMatch2003

conectivalinuxMatch9.0

conectivalinuxMatch10.0

Node

mandrakesoftmandrake_linuxMatch9.2

mandrakesoftmandrake_linuxMatch9.2amd64

mandrakesoftmandrake_linuxMatch10.0

mandrakesoftmandrake_linuxMatch10.0amd64

mandrakesoftmandrake_linux_corporate_serverMatch2.1

mandrakesoftmandrake_linux_corporate_serverMatch2.1x86_64

redhatenterprise_linuxMatch2.1advanced_server

redhatenterprise_linuxMatch2.1advanced_server_ia64

redhatenterprise_linuxMatch2.1enterprise_server

redhatenterprise_linuxMatch2.1enterprise_server_ia64

redhatenterprise_linuxMatch2.1workstation

redhatenterprise_linuxMatch2.1workstation_ia64

redhatenterprise_linuxMatch3.0advanced_servers

redhatenterprise_linuxMatch3.0enterprise_server

redhatenterprise_linuxMatch3.0workstation

redhatenterprise_linux_desktopMatch3.0

redhatfedora_coreMatchcore_1.0

redhatfedora_coreMatchcore_2.0

redhatfedora_coreMatchcore_3.0

redhatlinux_advanced_workstationMatch2.1ia64

redhatlinux_advanced_workstationMatch2.1itanium_processor

susesuse_linuxMatch8.0

susesuse_linuxMatch8.0i386

susesuse_linuxMatch8.1

susesuse_linuxMatch8.2

susesuse_linuxMatch9.0

susesuse_linuxMatch9.0x86_64

susesuse_linuxMatch9.1

susesuse_linuxMatch9.2

turbolinuxturbolinux_desktopMatch10.0

turbolinuxturbolinux_serverMatch7.0

turbolinuxturbolinux_serverMatch8.0

turbolinuxturbolinux_workstationMatch7.0

turbolinuxturbolinux_workstationMatch8.0

ubuntuubuntu_linuxMatch4.1ia64

ubuntuubuntu_linuxMatch4.1ppc

References

distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000870

sunsolve.sun.com/search/document.do?assetkey=1-66-201611-1

www.debian.org/security/2004/dsa-548

www.gentoo.org/security/en/glsa/glsa-200409-12.xml

www.mandriva.com/security/advisories?name=MDKSA-2004:089

www.redhat.com/support/errata/RHSA-2004-465.html

www.securityfocus.com/bid/11084

exchange.xforce.ibmcloud.com/vulnerabilities/17182

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A8843

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.3 High

AI Score

Confidence

Low

0.072 Low

EPSS

Percentile

94.0%

JSON

Related for NVD:CVE-2004-0817

nessus10 openvas12 cvelist2 freebsd1 redhat1 cve2 ubuntucve1 debian4 securityvulns1 nvd1 gentoo1 debiancve1