Lucene search
Ubuntu.comUB:CVE-2004-0688HistoryOct 20, 2004 - 12:00 a.m.
CVE-2004-0688
2004-10-2000:00:00
ubuntu.com
ubuntu.com
8
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.292 Low
EPSS
Percentile
96.8%
Multiple integer overflows in (1) the xpmParseColors function in parse.c,
(2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) ParsePixels, and (5)
ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to
execute arbitrary code via a malformed XPM image file.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| ubuntu | 6.06 | noarch | lesstif1-1 | < 0.93.94-12 | UNKNOWN |
| ubuntu | 6.10 | noarch | lesstif1-1 | < 0.93.94-12 | UNKNOWN |
| ubuntu | 6.06 | noarch | lesstif2 | < 0.94.4-1 | UNKNOWN |
| ubuntu | 6.10 | noarch | lesstif2 | < 0.94.4-1 | UNKNOWN |
| ubuntu | 7.04 | noarch | lesstif2 | < 0.94.4-1 | UNKNOWN |
| ubuntu | 6.06 | noarch | openmotif | < 2.2.3-1.2ubuntu2 | UNKNOWN |
| ubuntu | 6.10 | noarch | openmotif | < 2.2.3-1.2ubuntu2 | UNKNOWN |
| ubuntu | 7.04 | noarch | openmotif | < 2.2.3-1.2ubuntu2 | UNKNOWN |
Related
cve
cve
CVE-2004-0688
2004-10-20 04:00:00
CVE-2004-0783
2004-10-20 04:00:00
openvas
openvas
SLES9: Security update for OpenMotif
2009-10-10 00:00:00
SLES9: Security update for openmotif
2009-10-10 00:00:00
Gentoo Security Advisory GLSA 200410-09 (lesstif)
2008-09-24 00:00:00
nessus
nessus
SUSE-SA:2004:034: XFree86-libs, xshared
2004-09-17 00:00:00
GLSA-200410-09 : LessTif: Integer and stack overflows in libXpm
2004-10-11 00:00:00
GLSA-200409-34 : X.org, XFree86: Integer and stack overflows in libXpm
2004-09-27 00:00:00
debian
debian
[SECURITY] [DSA 561-1] New libxpm packages fix several vulnerabilities
2004-10-11 07:42:09
[SECURITY] [DSA 560-1] New lesstif packages fix several vulnerabilities
2004-10-07 13:32:27
[SECURITY] [DSA 561-1] New libxpm packages fix several vulnerabilities
2004-10-11 07:42:09
gentoo
gentoo
LessTif: Integer and stack overflows in libXpm
2004-10-09 00:00:00
X.org, XFree86: Integer and stack overflows in libXpm
2004-09-27 00:00:00
OpenMotif: Multiple vulnerabilities in libXpm
2005-02-07 00:00:00
ubuntucve
ubuntucve
CVE-2004-0783
2004-10-20 00:00:00
cert
cert
libXpm library contains multiple integer overflow vulnerabilities
2004-09-30 00:00:00
ubuntu
ubuntu
libxpm4 vulnerability
2004-11-18 00:00:00
osv
osv
xfree86 - integer and stack overflows
2004-10-11 00:00:00
lesstif1-1 - integer and stack overflows
2004-10-07 00:00:00
freebsd
freebsd
xpm -- image decoding vulnerabilities
2004-09-15 00:00:00
linux_base -- vulnerabilities in Red Hat 7.1 libraries
2004-09-27 00:00:00
debiancve
debiancve
CVE-2004-0783
2004-10-20 04:00:00
redhat
redhat
(RHSA-2004:537) openmotif security update
2004-12-02 00:00:00
(RHSA-2004:479) XFree86 security update
2004-10-06 00:00:00
(RHSA-2005:004) lesstif security update
2005-01-12 00:00:00
securityvulns
securityvulns
suse
suse
remote command execution in XFree86-libs, xshared
2004-09-17 13:37:17
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.292 Low
EPSS
Percentile
96.8%
Related for UB:CVE-2004-0688