Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include (1) multiple integer overflows, (2) out-of-bounds memory accesses, (3) directory traversal, (4) shell metacharacter, (5) endless loops, and (6) memory leaks, which could allow remote attackers to obtain sensitive information, cause a denial of service (application crash), or execute arbitrary code via a certain XPM image file. NOTE: it is highly likely that this candidate will be SPLIT into other candidates in the future, per CVE's content decisions.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2005-01-10 05:00
Updated : 2024-02-28 10:42
NVD link : CVE-2004-0914
Mitre link : CVE-2004-0914
CVE.ORG link : CVE-2004-0914
JSON object : View
Products Affected
lesstif
- lesstif
suse
- suse_linux
x.org
- x11r6
gentoo
- linux
redhat
- fedora_core
xfree86_project
- x11r6
CWE