Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2004-0783
HistoryOct 20, 2004 - 12:00 a.m.

CVE-2004-0783

2004-10-2000:00:00
ubuntu.com
ubuntu.com
10

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.305 Low

EPSS

Percentile

96.9%

JSON

Stack-based buffer overflow in xpm_extract_color (io-xpm.c) in the XPM
image decoder for gtk+ 2.4.4 (gtk2) and earlier, and gdk-pixbuf before
0.22, may allow remote attackers to execute arbitrary code via a certain
color string. NOTE: this identifier is ONLY for gtk+. It was incorrectly
referenced in an advisory for a different issue (CVE-2004-0688).

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchgtk+2.0< 2.8.20-0ubuntu1.1UNKNOWN
ubuntu6.10noarchgtk+2.0< 2.10.6-0ubuntu3.1UNKNOWN
ubuntu7.04noarchgtk+2.0< 2.10.11-0ubuntu3UNKNOWN

Related

cve 2
debiancve 1
openvas 31
ubuntucve 1
cert 4
osv 3
nessus 38
freebsd 3
debian 6
gentoo 4
ubuntu 1
securityvulns 3
redhat 7
suse 3
cve
cve
CVE-2004-0783
2004-10-20 04:00:00
CVE-2004-0688
2004-10-20 04:00:00
debiancve
debiancve
CVE-2004-0783
2004-10-20 04:00:00
openvas
openvas
FreeBSD Ports: linux-gdk-pixbuf
2008-09-04 00:00:00
FreeBSD Ports: linux-gdk-pixbuf
2008-09-04 00:00:00
xpm -- image decoding vulnerabilities
2008-09-04 00:00:00
ubuntucve
ubuntucve
CVE-2004-0688
2004-10-20 00:00:00
cert
cert
GdkPixbuf XPM parser contains a stack overflow vulnerability
2004-10-01 00:00:00
libXpm library contains multiple integer overflow vulnerabilities
2004-09-30 00:00:00
GdkPixbuf BMP parser may enter an infinite loop
2004-10-01 00:00:00
osv
osv
xfree86 - integer and stack overflows
2004-10-11 00:00:00
lesstif1-1 - integer and stack overflows
2004-10-07 00:00:00
gtk+2.0 - multiple holes
2004-09-17 00:00:00
nessus
nessus
Ubuntu 4.10 : libxpm4 vulnerability (USN-27-1)
2006-01-15 00:00:00
Debian DSA-560-1 : lesstif1-1 - integer and stack overflows
2004-11-10 00:00:00
HP-UX PHSS_33132 : HP-UX Running Motif Applications Remote Arbitrary Code Execution, Denial of Service (DoS) (HPSBUX02119 SSRT4848 rev.1)
2006-06-06 00:00:00
freebsd
freebsd
xpm -- image decoding vulnerabilities
2004-09-15 00:00:00
gdk-pixbuf -- image decoding vulnerabilities
2004-09-15 00:00:00
linux_base -- vulnerabilities in Red Hat 7.1 libraries
2004-09-27 00:00:00
debian
debian
[SECURITY] [DSA 560-1] New lesstif packages fix several vulnerabilities
2004-10-07 13:32:27
[SECURITY] [DSA 561-1] New libxpm packages fix several vulnerabilities
2004-10-11 07:42:09
[SECURITY] [DSA 560-1] New lesstif packages fix several vulnerabilities
2004-10-07 13:32:27
gentoo
gentoo
LessTif: Integer and stack overflows in libXpm
2004-10-09 00:00:00
X.org, XFree86: Integer and stack overflows in libXpm
2004-09-27 00:00:00
OpenMotif: Multiple vulnerabilities in libXpm
2005-02-07 00:00:00
ubuntu
ubuntu
libxpm4 vulnerability
2004-11-18 00:00:00
securityvulns
securityvulns
CESA-2004-004: libXpm
2004-09-16 00:00:00
CESA-2004-005: gtk+ XPM decoder
2004-09-16 00:00:00
US-CERT Technical Cyber Security Alert TA05-136A -- Apple Mac OS X is affected by multiple vulnerabilities
2005-05-17 00:00:00
redhat
redhat
(RHSA-2004:479) XFree86 security update
2004-10-06 00:00:00
(RHSA-2005:004) lesstif security update
2005-01-12 00:00:00
(RHSA-2004:537) openmotif security update
2004-12-02 00:00:00
suse
suse
remote code execution in gtk2, gdk-pixbuf
2004-09-17 10:02:50
remote command execution in XFree86-libs, xshared
2004-09-17 13:37:17
remote denial-of-service in apache2
2004-09-15 15:46:39

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.305 Low

EPSS

Percentile

96.9%

JSON
Related for UB:CVE-2004-0783
cve2debiancve1openvas31ubuntucve1cert4osv3nessus38freebsd3debian6gentoo4ubuntu1securityvulns3redhat7suse3