Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2005-0605
HistoryMar 02, 2005 - 5:00 a.m.

CVE-2005-0605

2005-03-0205:00:00
[email protected]
web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.6 High

AI Score

Confidence

High

0.017 Low

EPSS

Percentile

87.9%

JSON

scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.

Affected configurations

NVD
Node
lesstiflesstifMatch0.93.94
OR
sgipropackMatch3.0
OR
x.orgx11r6Match6.7.0
OR
x.orgx11r6Match6.8
OR
x.orgx11r6Match6.8.1
OR
xfree86_projectx11r6Match3.3
OR
xfree86_projectx11r6Match3.3.2
OR
xfree86_projectx11r6Match3.3.3
OR
xfree86_projectx11r6Match3.3.4
OR
xfree86_projectx11r6Match3.3.5
OR
xfree86_projectx11r6Match3.3.6
OR
xfree86_projectx11r6Match4.0
OR
xfree86_projectx11r6Match4.0.1
OR
xfree86_projectx11r6Match4.0.2.11
OR
xfree86_projectx11r6Match4.0.3
OR
xfree86_projectx11r6Match4.1.0
OR
xfree86_projectx11r6Match4.1.11
OR
xfree86_projectx11r6Match4.1.12
OR
xfree86_projectx11r6Match4.2.0
OR
xfree86_projectx11r6Match4.2.1
OR
xfree86_projectx11r6Match4.2.1errata
OR
xfree86_projectx11r6Match4.3.0
OR
xfree86_projectx11r6Match4.3.0.1
OR
xfree86_projectx11r6Match4.3.0.2
Node
altlinuxalt_linuxMatch2.3compact
OR
altlinuxalt_linuxMatch2.3junior
OR
mandrakesoftmandrake_linuxMatch10.0
OR
mandrakesoftmandrake_linuxMatch10.0amd64
OR
mandrakesoftmandrake_linuxMatch10.1
OR
mandrakesoftmandrake_linuxMatch10.1x86_64
OR
mandrakesoftmandrake_linuxMatch10.2
OR
mandrakesoftmandrake_linuxMatch10.2x86_64
OR
mandrakesoftmandrake_linux_corporate_serverMatch2.1
OR
mandrakesoftmandrake_linux_corporate_serverMatch2.1x86_64
OR
mandrakesoftmandrake_linux_corporate_serverMatch3.0
OR
mandrakesoftmandrake_linux_corporate_serverMatch3.0x86_64
OR
redhatenterprise_linuxMatch3.0advanced_server
OR
redhatenterprise_linuxMatch3.0enterprise_server
OR
redhatenterprise_linuxMatch3.0workstation_server
OR
redhatenterprise_linuxMatch4.0advanced_server
OR
redhatenterprise_linuxMatch4.0enterprise_server
OR
redhatenterprise_linuxMatch4.0workstation
OR
redhatenterprise_linux_desktopMatch3.0
OR
redhatenterprise_linux_desktopMatch4.0
OR
redhatfedora_coreMatchcore_2.0
OR
redhatfedora_coreMatchcore_3.0
OR
susesuse_linuxMatch6.1
OR
susesuse_linuxMatch6.1alpha
OR
susesuse_linuxMatch6.2
OR
susesuse_linuxMatch6.3
OR
susesuse_linuxMatch6.3ppc
OR
susesuse_linuxMatch6.3alpha
OR
susesuse_linuxMatch6.4
OR
susesuse_linuxMatch6.4i386
OR
susesuse_linuxMatch6.4ppc
OR
susesuse_linuxMatch6.4alpha
OR
susesuse_linuxMatch7.0
OR
susesuse_linuxMatch7.0i386
OR
susesuse_linuxMatch7.0ppc
OR
susesuse_linuxMatch7.0sparc
OR
susesuse_linuxMatch7.0alpha
OR
susesuse_linuxMatch7.1
OR
susesuse_linuxMatch7.1spa
OR
susesuse_linuxMatch7.1sparc
OR
susesuse_linuxMatch7.1x86
OR
susesuse_linuxMatch7.1alpha
OR
susesuse_linuxMatch7.2
OR
susesuse_linuxMatch7.2i386
OR
susesuse_linuxMatch7.3
OR
susesuse_linuxMatch7.3i386
OR
susesuse_linuxMatch7.3ppc
OR
susesuse_linuxMatch7.3sparc
OR
susesuse_linuxMatch8.0
OR
susesuse_linuxMatch8.0i386
OR
susesuse_linuxMatch8.1
OR
susesuse_linuxMatch8.2
OR
susesuse_linuxMatch9.0
OR
susesuse_linuxMatch9.0x86_64
OR
susesuse_linuxMatch9.1
OR
susesuse_linuxMatch9.1x86_64
OR
susesuse_linuxMatch9.2
OR
susesuse_linuxMatch9.2x86_64

References

Related

openvas 14
centos 5
redhat 7
nessus 22
gentoo 2
ubuntucve 1
cvelist 1
cve 1
debian 2
ubuntu 2
openvas
openvas
Solaris Update for Runtime library for Solaris 10 119281-22
2010-02-03 00:00:00
Debian Security Advisory DSA 723-1 (xfree86)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-723-1)
2008-01-17 00:00:00
centos
centos
XFree86 security update
2005-04-07 00:41:23
openmotif, openmotif21 security update
2005-05-11 16:44:52
lesstif security update
2005-05-24 23:32:07
redhat
redhat
(RHSA-2005:044) XFree86 security update
2005-04-06 00:00:00
(RHSA-2005:198) xorg-x11 security update
2005-06-08 00:00:00
(RHSA-2005:473) lesstif security update
2005-05-24 00:00:00
nessus
nessus
Mandrake Linux Security Advisory : XFree86 (MDKSA-2005:081)
2005-05-11 00:00:00
CentOS 3 : XFree86 (CESA-2005:331)
2006-07-03 00:00:00
RHEL 2.1 : lesstif (RHSA-2005:473)
2005-05-28 00:00:00
gentoo
gentoo
OpenMotif, LessTif: New libXpm buffer overflows
2005-03-04 00:00:00
X.org: libXpm vulnerability
2005-03-12 00:00:00
ubuntucve
ubuntucve
CVE-2005-0605
2005-03-02 00:00:00
cvelist
cvelist
CVE-2005-0605
2005-03-04 05:00:00
cve
cve
CVE-2005-0605
2005-03-04 05:00:00
debian
debian
[SECURITY] [DSA 723-1] New XFree86 packages fix arbitrary code execution
2005-05-09 16:01:56
[SECURITY] [DSA 723-1] New XFree86 packages fix arbitrary code execution
2005-05-09 16:01:56
ubuntu
ubuntu
libxpm vulnerability
2005-03-16 00:00:00
LessTif vulnerabilities
2005-03-08 00:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.6 High

AI Score

Confidence

High

0.017 Low

EPSS

Percentile

87.9%

JSON
Related for NVD:CVE-2005-0605
openvas14centos5redhat7nessus22gentoo2ubuntucve1cvelist1cve1debian2ubuntu2