Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2004-0782
HistoryOct 20, 2004 - 12:00 a.m.

CVE-2004-0782

2004-10-2000:00:00
ubuntu.com
ubuntu.com
7

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.305 Low

EPSS

Percentile

96.9%

JSON

Integer overflow in pixbuf_create_from_xpm (io-xpm.c) in the XPM image
decoder for gtk+ 2.4.4 (gtk2) and earlier, and gdk-pixbuf before 0.22,
allows remote attackers to execute arbitrary code via certain n_col and cpp
values that enable a heap-based buffer overflow. NOTE: this identifier is
ONLY for gtk+. It was incorrectly referenced in an advisory for a
different issue (CVE-2004-0687).

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchgdk-pixbuf< 0.22.0-11UNKNOWN
ubuntu6.10noarchgdk-pixbuf< 0.22.0-11UNKNOWN
ubuntu7.04noarchgdk-pixbuf< 0.22.0-11UNKNOWN
ubuntu6.06noarchgtk+2.0< 2.8.20-0ubuntu1.1UNKNOWN
ubuntu6.10noarchgtk+2.0< 2.10.6-0ubuntu3.1UNKNOWN
ubuntu7.04noarchgtk+2.0< 2.10.11-0ubuntu3UNKNOWN

Related

debiancve 1
cve 2
openvas 33
cert 4
ubuntucve 1
nessus 38
gentoo 4
ubuntu 1
osv 4
packetstorm 1
securityvulns 3
freebsd 4
debian 8
zdt 1
redhat 7
suse 3
debiancve
debiancve
CVE-2004-0782
2004-10-20 04:00:00
cve
cve
CVE-2004-0782
2004-10-20 04:00:00
CVE-2004-0687
2004-10-20 04:00:00
openvas
openvas
FreeBSD Ports: linux-gdk-pixbuf
2008-09-04 00:00:00
FreeBSD Ports: linux-gdk-pixbuf
2008-09-04 00:00:00
SLES9: Security update for openmotif
2009-10-10 00:00:00
cert
cert
libXpm image library vulnerable to buffer overflow
2004-09-30 00:00:00
libXpm library contains multiple integer overflow vulnerabilities
2004-09-30 00:00:00
GdkPixbuf BMP parser may enter an infinite loop
2004-10-01 00:00:00
ubuntucve
ubuntucve
CVE-2004-0687
2004-10-20 00:00:00
nessus
nessus
HP-UX PHSS_33130 : HP-UX Running Motif Applications Remote Arbitrary Code Execution, Denial of Service (DoS) (HPSBUX02119 SSRT4848 rev.1)
2006-06-06 00:00:00
Mandrake Linux Security Advisory : xorg-x11 (MDKSA-2004:124)
2004-11-05 00:00:00
Mandrake Linux Security Advisory : XFree86 (MDKSA-2004:099)
2004-09-16 00:00:00
gentoo
gentoo
X.org, XFree86: Integer and stack overflows in libXpm
2004-09-27 00:00:00
LessTif: Integer and stack overflows in libXpm
2004-10-09 00:00:00
OpenMotif: Multiple vulnerabilities in libXpm
2005-02-07 00:00:00
ubuntu
ubuntu
libxpm4 vulnerability
2004-11-18 00:00:00
osv
osv
lesstif1-1 - integer and stack overflows
2004-10-07 00:00:00
xfree86 - integer and stack overflows
2004-10-11 00:00:00
gtk+2.0 - multiple holes
2004-09-17 00:00:00
packetstorm
packetstorm
Solaris 10 dtprintinfo / libXm / libXpm Security Issues
2023-01-20 00:00:00
securityvulns
securityvulns
CESA-2004-005: gtk+ XPM decoder
2004-09-16 00:00:00
CESA-2004-004: libXpm
2004-09-16 00:00:00
US-CERT Technical Cyber Security Alert TA05-136A -- Apple Mac OS X is affected by multiple vulnerabilities
2005-05-17 00:00:00
freebsd
freebsd
xpm -- image decoding vulnerabilities
2004-09-15 00:00:00
gdk-pixbuf -- image decoding vulnerabilities
2004-09-15 00:00:00
imlib -- xpm heap buffer overflows and integer overflows
2004-12-06 00:00:00
debian
debian
[SECURITY] [DSA 560-1] New lesstif packages fix several vulnerabilities
2004-10-07 13:32:27
[SECURITY] [DSA 560-1] New lesstif packages fix several vulnerabilities
2004-10-07 00:00:00
[SECURITY] [DSA 561-1] New libxpm packages fix several vulnerabilities
2004-10-11 00:00:00
zdt
zdt
Solaris 10 dtprintinfo / libXm / libXpm Security Issues Vulnerability
2023-01-22 00:00:00
redhat
redhat
(RHSA-2004:537) openmotif security update
2004-12-02 00:00:00
(RHSA-2004:479) XFree86 security update
2004-10-06 00:00:00
(RHSA-2005:004) lesstif security update
2005-01-12 00:00:00
suse
suse
remote code execution in gtk2, gdk-pixbuf
2004-09-17 10:02:50
remote command execution in XFree86-libs, xshared
2004-09-17 13:37:17
remote denial-of-service in apache2
2004-09-15 15:46:39

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.305 Low

EPSS

Percentile

96.9%

JSON
Related for UB:CVE-2004-0782
debiancve1cve2openvas33cert4ubuntucve1nessus38gentoo4ubuntu1osv4packetstorm1securityvulns3freebsd4debian8zdt1redhat7suse3