Search

Find a vulnerability

Search criteria

    16 vulnerabilities found for x11r6 by x.org

    CVE-2006-4447 (GCVE-0-2006-4447)

    Vulnerability from nvd – Published: 2006-08-30 01:00 – Updated: 2024-08-07 19:14
    VLAI
    Summary
    X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtrans, and xterm, does not check the return values for setuid and seteuid calls when attempting to drop privileges, which might allow local users to gain privileges by causing those calls to fail, such as by exceeding a ulimit.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://secunia.com/advisories/21660 third-party-advisoryx_refsource_SECUNIA
    http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRIVA
    http://lists.freedesktop.org/archives/xorg/2006-J… mailing-listx_refsource_MLIST
    http://www.kb.cert.org/vuls/id/300368 third-party-advisoryx_refsource_CERT-VN
    http://www.vupen.com/english/advisories/2006/3409 vdb-entryx_refsource_VUPEN
    http://secunia.com/advisories/21693 third-party-advisoryx_refsource_SECUNIA
    http://www.debian.org/security/2006/dsa-1193 vendor-advisoryx_refsource_DEBIAN
    http://security.gentoo.org/glsa/glsa-200704-22.xml vendor-advisoryx_refsource_GENTOO
    http://secunia.com/advisories/22332 third-party-advisoryx_refsource_SECUNIA
    http://www.vupen.com/english/advisories/2007/0409 vdb-entryx_refsource_VUPEN
    http://security.gentoo.org/glsa/glsa-200608-25.xml vendor-advisoryx_refsource_GENTOO
    http://www.securityfocus.com/bid/23697 vdb-entryx_refsource_BID
    http://secunia.com/advisories/25059 third-party-advisoryx_refsource_SECUNIA
    http://secunia.com/advisories/25032 third-party-advisoryx_refsource_SECUNIA
    http://mail.gnome.org/archives/beast/2006-Decembe… mailing-listx_refsource_MLIST
    http://www.securityfocus.com/bid/19742 vdb-entryx_refsource_BID
    http://secunia.com/advisories/21650 third-party-advisoryx_refsource_SECUNIA
    Date Public
    2006-06-20 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T19:14:46.372Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "21660",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/21660"
              },
              {
                "name": "MDKSA-2006:160",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRIVA",
                  "x_transferred"
                ],
                "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:160"
              },
              {
                "name": "[xorg] 20060620 X.Org security advisory: setuid return value check problems",
                "tags": [
                  "mailing-list",
                  "x_refsource_MLIST",
                  "x_transferred"
                ],
                "url": "http://lists.freedesktop.org/archives/xorg/2006-June/016146.html"
              },
              {
                "name": "VU#300368",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/300368"
              },
              {
                "name": "ADV-2006-3409",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/3409"
              },
              {
                "name": "21693",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/21693"
              },
              {
                "name": "DSA-1193",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2006/dsa-1193"
              },
              {
                "name": "GLSA-200704-22",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://security.gentoo.org/glsa/glsa-200704-22.xml"
              },
              {
                "name": "22332",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/22332"
              },
              {
                "name": "ADV-2007-0409",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/0409"
              },
              {
                "name": "GLSA-200608-25",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://security.gentoo.org/glsa/glsa-200608-25.xml"
              },
              {
                "name": "23697",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/23697"
              },
              {
                "name": "25059",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/25059"
              },
              {
                "name": "25032",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/25032"
              },
              {
                "name": "[beast] 20061228 ANNOUNCE: BEAST/BSE v0.7.1",
                "tags": [
                  "mailing-list",
                  "x_refsource_MLIST",
                  "x_transferred"
                ],
                "url": "http://mail.gnome.org/archives/beast/2006-December/msg00025.html"
              },
              {
                "name": "19742",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/19742"
              },
              {
                "name": "21650",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/21650"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-06-20T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtrans, and xterm, does not check the return values for setuid and seteuid calls when attempting to drop privileges, which might allow local users to gain privileges by causing those calls to fail, such as by exceeding a ulimit."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2006-09-07T09:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "21660",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/21660"
            },
            {
              "name": "MDKSA-2006:160",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRIVA"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:160"
            },
            {
              "name": "[xorg] 20060620 X.Org security advisory: setuid return value check problems",
              "tags": [
                "mailing-list",
                "x_refsource_MLIST"
              ],
              "url": "http://lists.freedesktop.org/archives/xorg/2006-June/016146.html"
            },
            {
              "name": "VU#300368",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/300368"
            },
            {
              "name": "ADV-2006-3409",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/3409"
            },
            {
              "name": "21693",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/21693"
            },
            {
              "name": "DSA-1193",
              "tags": [
                "vendor-advisory",
                "x_refsource_DEBIAN"
              ],
              "url": "http://www.debian.org/security/2006/dsa-1193"
            },
            {
              "name": "GLSA-200704-22",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://security.gentoo.org/glsa/glsa-200704-22.xml"
            },
            {
              "name": "22332",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/22332"
            },
            {
              "name": "ADV-2007-0409",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/0409"
            },
            {
              "name": "GLSA-200608-25",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://security.gentoo.org/glsa/glsa-200608-25.xml"
            },
            {
              "name": "23697",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/23697"
            },
            {
              "name": "25059",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/25059"
            },
            {
              "name": "25032",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/25032"
            },
            {
              "name": "[beast] 20061228 ANNOUNCE: BEAST/BSE v0.7.1",
              "tags": [
                "mailing-list",
                "x_refsource_MLIST"
              ],
              "url": "http://mail.gnome.org/archives/beast/2006-December/msg00025.html"
            },
            {
              "name": "19742",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/19742"
            },
            {
              "name": "21650",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/21650"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-4447",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtrans, and xterm, does not check the return values for setuid and seteuid calls when attempting to drop privileges, which might allow local users to gain privileges by causing those calls to fail, such as by exceeding a ulimit."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "21660",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/21660"
                },
                {
                  "name": "MDKSA-2006:160",
                  "refsource": "MANDRIVA",
                  "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:160"
                },
                {
                  "name": "[xorg] 20060620 X.Org security advisory: setuid return value check problems",
                  "refsource": "MLIST",
                  "url": "http://lists.freedesktop.org/archives/xorg/2006-June/016146.html"
                },
                {
                  "name": "VU#300368",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/300368"
                },
                {
                  "name": "ADV-2006-3409",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/3409"
                },
                {
                  "name": "21693",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/21693"
                },
                {
                  "name": "DSA-1193",
                  "refsource": "DEBIAN",
                  "url": "http://www.debian.org/security/2006/dsa-1193"
                },
                {
                  "name": "GLSA-200704-22",
                  "refsource": "GENTOO",
                  "url": "http://security.gentoo.org/glsa/glsa-200704-22.xml"
                },
                {
                  "name": "22332",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/22332"
                },
                {
                  "name": "ADV-2007-0409",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/0409"
                },
                {
                  "name": "GLSA-200608-25",
                  "refsource": "GENTOO",
                  "url": "http://security.gentoo.org/glsa/glsa-200608-25.xml"
                },
                {
                  "name": "23697",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/23697"
                },
                {
                  "name": "25059",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/25059"
                },
                {
                  "name": "25032",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/25032"
                },
                {
                  "name": "[beast] 20061228 ANNOUNCE: BEAST/BSE v0.7.1",
                  "refsource": "MLIST",
                  "url": "http://mail.gnome.org/archives/beast/2006-December/msg00025.html"
                },
                {
                  "name": "19742",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/19742"
                },
                {
                  "name": "21650",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/21650"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-4447",
        "datePublished": "2006-08-30T01:00:00.000Z",
        "dateReserved": "2006-08-29T00:00:00.000Z",
        "dateUpdated": "2024-08-07T19:14:46.372Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-1526 (GCVE-0-2006-1526)

    Vulnerability from nvd – Published: 2006-05-02 21:00 – Updated: 2024-08-07 17:12
    VLAI
    Summary
    Buffer overflow in the X render (Xrender) extension in X.org X server 6.8.0 up to allows attackers to cause a denial of service (crash), as demonstrated by the (1) XRenderCompositeTriStrip and (2) XRenderCompositeTriFan requests in the rendertest from XCB xcb/xcb-demo, which leads to an incorrect memory allocation due to a typo in an expression that uses a "&" instead of a "*" operator. NOTE: the subject line of the original announcement used an incorrect CVE number for this issue.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.redhat.com/support/errata/RHSA-2006-04… vendor-advisoryx_refsource_REDHAT
    http://secunia.com/advisories/19921 third-party-advisoryx_refsource_SECUNIA
    http://secunia.com/advisories/19943 third-party-advisoryx_refsource_SECUNIA
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://secunia.com/advisories/19956 third-party-advisoryx_refsource_SECUNIA
    http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRIVA
    http://www.vupen.com/english/advisories/2006/1617 vdb-entryx_refsource_VUPEN
    http://secunia.com/advisories/19951 third-party-advisoryx_refsource_SECUNIA
    http://www.novell.com/linux/security/advisories/2… vendor-advisoryx_refsource_SUSE
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    http://www.securityfocus.com/bid/17795 vdb-entryx_refsource_BID
    http://sunsolve.sun.com/search/document.do?assetk… vendor-advisoryx_refsource_SUNALERT
    http://www.kb.cert.org/vuls/id/633257 third-party-advisoryx_refsource_CERT-VN
    http://securitytracker.com/id?1016018 vdb-entryx_refsource_SECTRACK
    http://www.gentoo.org/security/en/glsa/glsa-20060… vendor-advisoryx_refsource_GENTOO
    http://secunia.com/advisories/19983 third-party-advisoryx_refsource_SECUNIA
    http://www.openbsd.org/errata38.html#xorg vendor-advisoryx_refsource_OPENBSD
    http://www.trustix.org/errata/2006/0024 vendor-advisoryx_refsource_TRUSTIX
    https://bugs.freedesktop.org/show_bug.cgi?id=6642 x_refsource_CONFIRM
    http://secunia.com/advisories/19900 third-party-advisoryx_refsource_SECUNIA
    https://usn.ubuntu.com/280-1/ vendor-advisoryx_refsource_UBUNTU
    http://www.securityfocus.com/archive/1/436327/100… vendor-advisoryx_refsource_FEDORA
    http://secunia.com/advisories/19915 third-party-advisoryx_refsource_SECUNIA
    http://lists.freedesktop.org/archives/xorg/2006-M… mailing-listx_refsource_MLIST
    http://secunia.com/advisories/19916 third-party-advisoryx_refsource_SECUNIA
    Date Public
    2006-05-02 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T17:12:22.400Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "RHSA-2006:0451",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2006-0451.html"
              },
              {
                "name": "19921",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19921"
              },
              {
                "name": "19943",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19943"
              },
              {
                "name": "xorg-xrender-bo(26200)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26200"
              },
              {
                "name": "19956",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19956"
              },
              {
                "name": "MDKSA-2006:081",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRIVA",
                  "x_transferred"
                ],
                "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:081"
              },
              {
                "name": "ADV-2006-1617",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/1617"
              },
              {
                "name": "19951",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19951"
              },
              {
                "name": "SUSE-SA:2006:023",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SUSE",
                  "x_transferred"
                ],
                "url": "http://www.novell.com/linux/security/advisories/2006_05_03.html"
              },
              {
                "name": "oval:org.mitre.oval:def:9929",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9929"
              },
              {
                "name": "17795",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/17795"
              },
              {
                "name": "102339",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SUNALERT",
                  "x_transferred"
                ],
                "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102339-1"
              },
              {
                "name": "VU#633257",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/633257"
              },
              {
                "name": "1016018",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1016018"
              },
              {
                "name": "GLSA-200605-02",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200605-02.xml"
              },
              {
                "name": "19983",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19983"
              },
              {
                "name": "[3.8] 007: SECURITY FIX: May 2, 2006",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_OPENBSD",
                  "x_transferred"
                ],
                "url": "http://www.openbsd.org/errata38.html#xorg"
              },
              {
                "name": "2006-0024",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_TRUSTIX",
                  "x_transferred"
                ],
                "url": "http://www.trustix.org/errata/2006/0024"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://bugs.freedesktop.org/show_bug.cgi?id=6642"
              },
              {
                "name": "19900",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19900"
              },
              {
                "name": "USN-280-1",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_UBUNTU",
                  "x_transferred"
                ],
                "url": "https://usn.ubuntu.com/280-1/"
              },
              {
                "name": "FLSA:190777",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/436327/100/0/threaded"
              },
              {
                "name": "19915",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19915"
              },
              {
                "name": "[xorg] 20060502 [CVE-2006-1525] X.Org security advisory: Buffer overflow in the Xrender extension",
                "tags": [
                  "mailing-list",
                  "x_refsource_MLIST",
                  "x_transferred"
                ],
                "url": "http://lists.freedesktop.org/archives/xorg/2006-May/015136.html"
              },
              {
                "name": "19916",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19916"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-05-02T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Buffer overflow in the X render (Xrender) extension in X.org X server 6.8.0 up to allows attackers to cause a denial of service (crash), as demonstrated by the (1) XRenderCompositeTriStrip and (2) XRenderCompositeTriFan requests in the rendertest from XCB xcb/xcb-demo, which leads to an incorrect memory allocation due to a typo in an expression that uses a \"\u0026\" instead of a \"*\" operator. NOTE: the subject line of the original announcement used an incorrect CVE number for this issue."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-18T14:57:01.000Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2006:0451",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2006-0451.html"
            },
            {
              "name": "19921",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19921"
            },
            {
              "name": "19943",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19943"
            },
            {
              "name": "xorg-xrender-bo(26200)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26200"
            },
            {
              "name": "19956",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19956"
            },
            {
              "name": "MDKSA-2006:081",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRIVA"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:081"
            },
            {
              "name": "ADV-2006-1617",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/1617"
            },
            {
              "name": "19951",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19951"
            },
            {
              "name": "SUSE-SA:2006:023",
              "tags": [
                "vendor-advisory",
                "x_refsource_SUSE"
              ],
              "url": "http://www.novell.com/linux/security/advisories/2006_05_03.html"
            },
            {
              "name": "oval:org.mitre.oval:def:9929",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9929"
            },
            {
              "name": "17795",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/17795"
            },
            {
              "name": "102339",
              "tags": [
                "vendor-advisory",
                "x_refsource_SUNALERT"
              ],
              "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102339-1"
            },
            {
              "name": "VU#633257",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/633257"
            },
            {
              "name": "1016018",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1016018"
            },
            {
              "name": "GLSA-200605-02",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200605-02.xml"
            },
            {
              "name": "19983",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19983"
            },
            {
              "name": "[3.8] 007: SECURITY FIX: May 2, 2006",
              "tags": [
                "vendor-advisory",
                "x_refsource_OPENBSD"
              ],
              "url": "http://www.openbsd.org/errata38.html#xorg"
            },
            {
              "name": "2006-0024",
              "tags": [
                "vendor-advisory",
                "x_refsource_TRUSTIX"
              ],
              "url": "http://www.trustix.org/errata/2006/0024"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://bugs.freedesktop.org/show_bug.cgi?id=6642"
            },
            {
              "name": "19900",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19900"
            },
            {
              "name": "USN-280-1",
              "tags": [
                "vendor-advisory",
                "x_refsource_UBUNTU"
              ],
              "url": "https://usn.ubuntu.com/280-1/"
            },
            {
              "name": "FLSA:190777",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "http://www.securityfocus.com/archive/1/436327/100/0/threaded"
            },
            {
              "name": "19915",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19915"
            },
            {
              "name": "[xorg] 20060502 [CVE-2006-1525] X.Org security advisory: Buffer overflow in the Xrender extension",
              "tags": [
                "mailing-list",
                "x_refsource_MLIST"
              ],
              "url": "http://lists.freedesktop.org/archives/xorg/2006-May/015136.html"
            },
            {
              "name": "19916",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19916"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2006-1526",
        "datePublished": "2006-05-02T21:00:00.000Z",
        "dateReserved": "2006-03-30T00:00:00.000Z",
        "dateUpdated": "2024-08-07T17:12:22.400Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-0745 (GCVE-0-2006-0745)

    Vulnerability from nvd – Published: 2006-03-21 02:00 – Updated: 2024-08-07 16:48
    VLAI
    Summary
    X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended restrictions and (1) execute arbitrary code via the -modulepath command line option or (2) overwrite arbitrary files via -logfile.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRIVA
    http://www.securityfocus.com/archive/1/428230/100… mailing-listx_refsource_BUGTRAQ
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.redhat.com/archives/fedora-announce-li… vendor-advisoryx_refsource_FEDORA
    http://support.avaya.com/elmodocs2/security/ASA-2… x_refsource_CONFIRM
    http://www.securityfocus.com/archive/1/428183/100… mailing-listx_refsource_BUGTRAQ
    http://securitytracker.com/id?1015793 vdb-entryx_refsource_SECTRACK
    http://secunia.com/advisories/19256 third-party-advisoryx_refsource_SECUNIA
    http://sunsolve.sun.com/search/document.do?assetk… vendor-advisoryx_refsource_SUNALERT
    http://www.osvdb.org/24000 vdb-entryx_refsource_OSVDB
    http://secunia.com/advisories/19676 third-party-advisoryx_refsource_SECUNIA
    http://secunia.com/advisories/19316 third-party-advisoryx_refsource_SECUNIA
    http://www.osvdb.org/24001 vdb-entryx_refsource_OSVDB
    http://www.vupen.com/english/advisories/2006/1017 vdb-entryx_refsource_VUPEN
    http://securityreason.com/securityalert/606 third-party-advisoryx_refsource_SREASON
    http://www.securityfocus.com/bid/17169 vdb-entryx_refsource_BID
    http://www.novell.com/linux/security/advisories/2… vendor-advisoryx_refsource_SUSE
    http://www.vupen.com/english/advisories/2006/1028 vdb-entryx_refsource_VUPEN
    http://secunia.com/advisories/19307 third-party-advisoryx_refsource_SECUNIA
    http://secunia.com/advisories/19311 third-party-advisoryx_refsource_SECUNIA
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    Date Public
    2006-03-20 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T16:48:55.745Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "MDKSA-2006:056",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRIVA",
                  "x_transferred"
                ],
                "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:056"
              },
              {
                "name": "20060320 Re: [CVE-2006-0745] X.Org Security Advisory: privilege escalation and DoS in X11R6.9, X11R7.0",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/428230/100/0/threaded"
              },
              {
                "name": "xorg-geteuid-privilege-escalation(25341)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25341"
              },
              {
                "name": "FEDORA-2006-172",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/archives/fedora-announce-list/2006-March/msg00026.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-078.htm"
              },
              {
                "name": "20060320 [CVE-2006-0745] X.Org Security Advisory: privilege escalation and DoS in X11R6.9, X11R7.0",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/428183/100/0/threaded"
              },
              {
                "name": "1015793",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1015793"
              },
              {
                "name": "19256",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19256"
              },
              {
                "name": "102252",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SUNALERT",
                  "x_transferred"
                ],
                "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102252-1"
              },
              {
                "name": "24000",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/24000"
              },
              {
                "name": "19676",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19676"
              },
              {
                "name": "19316",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19316"
              },
              {
                "name": "24001",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/24001"
              },
              {
                "name": "ADV-2006-1017",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/1017"
              },
              {
                "name": "606",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SREASON",
                  "x_transferred"
                ],
                "url": "http://securityreason.com/securityalert/606"
              },
              {
                "name": "17169",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/17169"
              },
              {
                "name": "SUSE-SA:2006:016",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SUSE",
                  "x_transferred"
                ],
                "url": "http://www.novell.com/linux/security/advisories/2006_16_xorgx11server.html"
              },
              {
                "name": "ADV-2006-1028",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/1028"
              },
              {
                "name": "19307",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19307"
              },
              {
                "name": "19311",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19311"
              },
              {
                "name": "oval:org.mitre.oval:def:1697",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1697"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-03-20T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended restrictions and (1) execute arbitrary code via the -modulepath command line option or (2) overwrite arbitrary files via -logfile."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-19T14:57:01.000Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "MDKSA-2006:056",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRIVA"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:056"
            },
            {
              "name": "20060320 Re: [CVE-2006-0745] X.Org Security Advisory: privilege escalation and DoS in X11R6.9, X11R7.0",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/428230/100/0/threaded"
            },
            {
              "name": "xorg-geteuid-privilege-escalation(25341)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25341"
            },
            {
              "name": "FEDORA-2006-172",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "http://www.redhat.com/archives/fedora-announce-list/2006-March/msg00026.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-078.htm"
            },
            {
              "name": "20060320 [CVE-2006-0745] X.Org Security Advisory: privilege escalation and DoS in X11R6.9, X11R7.0",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/428183/100/0/threaded"
            },
            {
              "name": "1015793",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1015793"
            },
            {
              "name": "19256",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19256"
            },
            {
              "name": "102252",
              "tags": [
                "vendor-advisory",
                "x_refsource_SUNALERT"
              ],
              "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102252-1"
            },
            {
              "name": "24000",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/24000"
            },
            {
              "name": "19676",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19676"
            },
            {
              "name": "19316",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19316"
            },
            {
              "name": "24001",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/24001"
            },
            {
              "name": "ADV-2006-1017",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/1017"
            },
            {
              "name": "606",
              "tags": [
                "third-party-advisory",
                "x_refsource_SREASON"
              ],
              "url": "http://securityreason.com/securityalert/606"
            },
            {
              "name": "17169",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/17169"
            },
            {
              "name": "SUSE-SA:2006:016",
              "tags": [
                "vendor-advisory",
                "x_refsource_SUSE"
              ],
              "url": "http://www.novell.com/linux/security/advisories/2006_16_xorgx11server.html"
            },
            {
              "name": "ADV-2006-1028",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/1028"
            },
            {
              "name": "19307",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19307"
            },
            {
              "name": "19311",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19311"
            },
            {
              "name": "oval:org.mitre.oval:def:1697",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1697"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secalert@redhat.com",
              "ID": "CVE-2006-0745",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended restrictions and (1) execute arbitrary code via the -modulepath command line option or (2) overwrite arbitrary files via -logfile."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "MDKSA-2006:056",
                  "refsource": "MANDRIVA",
                  "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:056"
                },
                {
                  "name": "20060320 Re: [CVE-2006-0745] X.Org Security Advisory: privilege escalation and DoS in X11R6.9, X11R7.0",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/428230/100/0/threaded"
                },
                {
                  "name": "xorg-geteuid-privilege-escalation(25341)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25341"
                },
                {
                  "name": "FEDORA-2006-172",
                  "refsource": "FEDORA",
                  "url": "http://www.redhat.com/archives/fedora-announce-list/2006-March/msg00026.html"
                },
                {
                  "name": "http://support.avaya.com/elmodocs2/security/ASA-2006-078.htm",
                  "refsource": "CONFIRM",
                  "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-078.htm"
                },
                {
                  "name": "20060320 [CVE-2006-0745] X.Org Security Advisory: privilege escalation and DoS in X11R6.9, X11R7.0",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/428183/100/0/threaded"
                },
                {
                  "name": "1015793",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1015793"
                },
                {
                  "name": "19256",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/19256"
                },
                {
                  "name": "102252",
                  "refsource": "SUNALERT",
                  "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102252-1"
                },
                {
                  "name": "24000",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/24000"
                },
                {
                  "name": "19676",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/19676"
                },
                {
                  "name": "19316",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/19316"
                },
                {
                  "name": "24001",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/24001"
                },
                {
                  "name": "ADV-2006-1017",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/1017"
                },
                {
                  "name": "606",
                  "refsource": "SREASON",
                  "url": "http://securityreason.com/securityalert/606"
                },
                {
                  "name": "17169",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/17169"
                },
                {
                  "name": "SUSE-SA:2006:016",
                  "refsource": "SUSE",
                  "url": "http://www.novell.com/linux/security/advisories/2006_16_xorgx11server.html"
                },
                {
                  "name": "ADV-2006-1028",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/1028"
                },
                {
                  "name": "19307",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/19307"
                },
                {
                  "name": "19311",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/19311"
                },
                {
                  "name": "oval:org.mitre.oval:def:1697",
                  "refsource": "OVAL",
                  "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1697"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2006-0745",
        "datePublished": "2006-03-21T02:00:00.000Z",
        "dateReserved": "2006-02-17T00:00:00.000Z",
        "dateUpdated": "2024-08-07T16:48:55.745Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2005-0605 (GCVE-0-2005-0605)

    Vulnerability from nvd – Published: 2005-03-04 05:00 – Updated: 2024-08-07 21:21
    VLAI
    Summary
    scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.redhat.com/support/errata/RHSA-2005-331.html vendor-advisoryx_refsource_REDHAT
    http://www.redhat.com/support/errata/RHSA-2005-412.html vendor-advisoryx_refsource_REDHAT
    http://securitytracker.com/id?1013339 vdb-entryx_refsource_SECTRACK
    http://secunia.com/advisories/18049 third-party-advisoryx_refsource_SECUNIA
    ftp://patches.sgi.com/support/free/security/advis… vendor-advisoryx_refsource_SGI
    ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-20… vendor-advisoryx_refsource_SCO
    http://bugs.gentoo.org/show_bug.cgi?id=83598 x_refsource_CONFIRM
    http://www.gentoo.org/security/en/glsa/glsa-20050… vendor-advisoryx_refsource_GENTOO
    http://www.debian.org/security/2005/dsa-723 vendor-advisoryx_refsource_DEBIAN
    http://secunia.com/advisories/19624 third-party-advisoryx_refsource_SECUNIA
    https://bugs.freedesktop.org/attachment.cgi?id=1909 x_refsource_CONFIRM
    http://lists.apple.com/archives/security-announce… vendor-advisoryx_refsource_APPLE
    http://secunia.com/advisories/18316 third-party-advisoryx_refsource_SECUNIA
    http://secunia.com/advisories/14460 third-party-advisoryx_refsource_SECUNIA
    http://www.redhat.com/support/errata/RHSA-2005-198.html vendor-advisoryx_refsource_REDHAT
    http://www.redhat.com/archives/fedora-legacy-anno… vendor-advisoryx_refsource_FEDORA
    http://www.redhat.com/support/errata/RHSA-2005-044.html vendor-advisoryx_refsource_REDHAT
    http://security.gentoo.org/glsa/glsa-200503-08.xml vendor-advisoryx_refsource_GENTOO
    http://www.securityfocus.com/bid/12714 vdb-entryx_refsource_BID
    http://www.redhat.com/support/errata/RHSA-2008-02… vendor-advisoryx_refsource_REDHAT
    http://bugs.gentoo.org/show_bug.cgi?id=83655 x_refsource_CONFIRM
    http://www.redhat.com/support/errata/RHSA-2005-473.html vendor-advisoryx_refsource_REDHAT
    http://lists.apple.com/archives/security-announce… vendor-advisoryx_refsource_APPLE
    ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005… vendor-advisoryx_refsource_SCO
    https://usn.ubuntu.com/97-1/ vendor-advisoryx_refsource_UBUNTU
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    https://usn.ubuntu.com/92-1/ vendor-advisoryx_refsource_UBUNTU
    Date Public
    2005-03-01 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T21:21:06.249Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "RHSA-2005:331",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2005-331.html"
              },
              {
                "name": "RHSA-2005:412",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2005-412.html"
              },
              {
                "name": "1013339",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1013339"
              },
              {
                "name": "18049",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/18049"
              },
              {
                "name": "20060403-01-U",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SGI",
                  "x_transferred"
                ],
                "url": "ftp://patches.sgi.com/support/free/security/advisories/20060403-01-U"
              },
              {
                "name": "SCOSA-2006.5",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SCO",
                  "x_transferred"
                ],
                "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.5/SCOSA-2006.5.txt"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://bugs.gentoo.org/show_bug.cgi?id=83598"
              },
              {
                "name": "GLSA-200503-15",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200503-15.xml"
              },
              {
                "name": "DSA-723",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2005/dsa-723"
              },
              {
                "name": "19624",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19624"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://bugs.freedesktop.org/attachment.cgi?id=1909"
              },
              {
                "name": "APPLE-SA-2005-08-15",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_APPLE",
                  "x_transferred"
                ],
                "url": "http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html"
              },
              {
                "name": "18316",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/18316"
              },
              {
                "name": "14460",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/14460"
              },
              {
                "name": "RHSA-2005:198",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2005-198.html"
              },
              {
                "name": "FLSA-2006:152803",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
              },
              {
                "name": "RHSA-2005:044",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2005-044.html"
              },
              {
                "name": "GLSA-200503-08",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://security.gentoo.org/glsa/glsa-200503-08.xml"
              },
              {
                "name": "12714",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/12714"
              },
              {
                "name": "RHSA-2008:0261",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2008-0261.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://bugs.gentoo.org/show_bug.cgi?id=83655"
              },
              {
                "name": "RHSA-2005:473",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2005-473.html"
              },
              {
                "name": "APPLE-SA-2005-08-17",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_APPLE",
                  "x_transferred"
                ],
                "url": "http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html"
              },
              {
                "name": "SCOSA-2005.57",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SCO",
                  "x_transferred"
                ],
                "url": "ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.57/SCOSA-2005.57.txt"
              },
              {
                "name": "USN-97-1",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_UBUNTU",
                  "x_transferred"
                ],
                "url": "https://usn.ubuntu.com/97-1/"
              },
              {
                "name": "oval:org.mitre.oval:def:10411",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10411"
              },
              {
                "name": "USN-92-1",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_UBUNTU",
                  "x_transferred"
                ],
                "url": "https://usn.ubuntu.com/92-1/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2005-03-01T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-03T20:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "RHSA-2005:331",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2005-331.html"
            },
            {
              "name": "RHSA-2005:412",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2005-412.html"
            },
            {
              "name": "1013339",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1013339"
            },
            {
              "name": "18049",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/18049"
            },
            {
              "name": "20060403-01-U",
              "tags": [
                "vendor-advisory",
                "x_refsource_SGI"
              ],
              "url": "ftp://patches.sgi.com/support/free/security/advisories/20060403-01-U"
            },
            {
              "name": "SCOSA-2006.5",
              "tags": [
                "vendor-advisory",
                "x_refsource_SCO"
              ],
              "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.5/SCOSA-2006.5.txt"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://bugs.gentoo.org/show_bug.cgi?id=83598"
            },
            {
              "name": "GLSA-200503-15",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200503-15.xml"
            },
            {
              "name": "DSA-723",
              "tags": [
                "vendor-advisory",
                "x_refsource_DEBIAN"
              ],
              "url": "http://www.debian.org/security/2005/dsa-723"
            },
            {
              "name": "19624",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19624"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://bugs.freedesktop.org/attachment.cgi?id=1909"
            },
            {
              "name": "APPLE-SA-2005-08-15",
              "tags": [
                "vendor-advisory",
                "x_refsource_APPLE"
              ],
              "url": "http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html"
            },
            {
              "name": "18316",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/18316"
            },
            {
              "name": "14460",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/14460"
            },
            {
              "name": "RHSA-2005:198",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2005-198.html"
            },
            {
              "name": "FLSA-2006:152803",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
            },
            {
              "name": "RHSA-2005:044",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2005-044.html"
            },
            {
              "name": "GLSA-200503-08",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://security.gentoo.org/glsa/glsa-200503-08.xml"
            },
            {
              "name": "12714",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/12714"
            },
            {
              "name": "RHSA-2008:0261",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2008-0261.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://bugs.gentoo.org/show_bug.cgi?id=83655"
            },
            {
              "name": "RHSA-2005:473",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2005-473.html"
            },
            {
              "name": "APPLE-SA-2005-08-17",
              "tags": [
                "vendor-advisory",
                "x_refsource_APPLE"
              ],
              "url": "http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html"
            },
            {
              "name": "SCOSA-2005.57",
              "tags": [
                "vendor-advisory",
                "x_refsource_SCO"
              ],
              "url": "ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.57/SCOSA-2005.57.txt"
            },
            {
              "name": "USN-97-1",
              "tags": [
                "vendor-advisory",
                "x_refsource_UBUNTU"
              ],
              "url": "https://usn.ubuntu.com/97-1/"
            },
            {
              "name": "oval:org.mitre.oval:def:10411",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10411"
            },
            {
              "name": "USN-92-1",
              "tags": [
                "vendor-advisory",
                "x_refsource_UBUNTU"
              ],
              "url": "https://usn.ubuntu.com/92-1/"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2005-0605",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "RHSA-2005:331",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2005-331.html"
                },
                {
                  "name": "RHSA-2005:412",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2005-412.html"
                },
                {
                  "name": "1013339",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1013339"
                },
                {
                  "name": "18049",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/18049"
                },
                {
                  "name": "20060403-01-U",
                  "refsource": "SGI",
                  "url": "ftp://patches.sgi.com/support/free/security/advisories/20060403-01-U"
                },
                {
                  "name": "SCOSA-2006.5",
                  "refsource": "SCO",
                  "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.5/SCOSA-2006.5.txt"
                },
                {
                  "name": "http://bugs.gentoo.org/show_bug.cgi?id=83598",
                  "refsource": "CONFIRM",
                  "url": "http://bugs.gentoo.org/show_bug.cgi?id=83598"
                },
                {
                  "name": "GLSA-200503-15",
                  "refsource": "GENTOO",
                  "url": "http://www.gentoo.org/security/en/glsa/glsa-200503-15.xml"
                },
                {
                  "name": "DSA-723",
                  "refsource": "DEBIAN",
                  "url": "http://www.debian.org/security/2005/dsa-723"
                },
                {
                  "name": "19624",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/19624"
                },
                {
                  "name": "https://bugs.freedesktop.org/attachment.cgi?id=1909",
                  "refsource": "CONFIRM",
                  "url": "https://bugs.freedesktop.org/attachment.cgi?id=1909"
                },
                {
                  "name": "APPLE-SA-2005-08-15",
                  "refsource": "APPLE",
                  "url": "http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html"
                },
                {
                  "name": "18316",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/18316"
                },
                {
                  "name": "14460",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/14460"
                },
                {
                  "name": "RHSA-2005:198",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2005-198.html"
                },
                {
                  "name": "FLSA-2006:152803",
                  "refsource": "FEDORA",
                  "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
                },
                {
                  "name": "RHSA-2005:044",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2005-044.html"
                },
                {
                  "name": "GLSA-200503-08",
                  "refsource": "GENTOO",
                  "url": "http://security.gentoo.org/glsa/glsa-200503-08.xml"
                },
                {
                  "name": "12714",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/12714"
                },
                {
                  "name": "RHSA-2008:0261",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2008-0261.html"
                },
                {
                  "name": "http://bugs.gentoo.org/show_bug.cgi?id=83655",
                  "refsource": "CONFIRM",
                  "url": "http://bugs.gentoo.org/show_bug.cgi?id=83655"
                },
                {
                  "name": "RHSA-2005:473",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2005-473.html"
                },
                {
                  "name": "APPLE-SA-2005-08-17",
                  "refsource": "APPLE",
                  "url": "http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html"
                },
                {
                  "name": "SCOSA-2005.57",
                  "refsource": "SCO",
                  "url": "ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.57/SCOSA-2005.57.txt"
                },
                {
                  "name": "USN-97-1",
                  "refsource": "UBUNTU",
                  "url": "https://usn.ubuntu.com/97-1/"
                },
                {
                  "name": "oval:org.mitre.oval:def:10411",
                  "refsource": "OVAL",
                  "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10411"
                },
                {
                  "name": "USN-92-1",
                  "refsource": "UBUNTU",
                  "url": "https://usn.ubuntu.com/92-1/"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2005-0605",
        "datePublished": "2005-03-04T05:00:00.000Z",
        "dateReserved": "2005-03-01T00:00:00.000Z",
        "dateUpdated": "2024-08-07T21:21:06.249Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2004-0914 (GCVE-0-2004-0914)

    Vulnerability from nvd – Published: 2004-12-15 05:00 – Updated: 2024-08-08 00:31
    VLAI
    Summary
    Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include (1) multiple integer overflows, (2) out-of-bounds memory accesses, (3) directory traversal, (4) shell metacharacter, (5) endless loops, and (6) memory leaks, which could allow remote attackers to obtain sensitive information, cause a denial of service (application crash), or execute arbitrary code via a certain XPM image file. NOTE: it is highly likely that this candidate will be SPLIT into other candidates in the future, per CVE's content decisions.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.redhat.com/support/errata/RHSA-2005-004.html vendor-advisoryx_refsource_REDHAT
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.ubuntu.com/usn/usn-83-1 vendor-advisoryx_refsource_UBUNTU
    http://rhn.redhat.com/errata/RHSA-2004-537.html vendor-advisoryx_refsource_REDHAT
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://secunia.com/advisories/13224/ third-party-advisoryx_refsource_SECUNIA
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    http://www.linuxsecurity.com/content/view/106877/102/ vendor-advisoryx_refsource_FEDORA
    http://www.x.org/pub/X11R6.8.1/patches/README.xor… x_refsource_CONFIRM
    http://www.redhat.com/support/errata/RHSA-2004-610.html vendor-advisoryx_refsource_REDHAT
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.gentoo.org/security/en/glsa/glsa-20050… vendor-advisoryx_refsource_GENTOO
    http://www.redhat.com/archives/fedora-legacy-anno… vendor-advisoryx_refsource_FEDORA
    http://www.debian.org/security/2004/dsa-607 vendor-advisoryx_refsource_DEBIAN
    http://www.securityfocus.com/bid/11694 vdb-entryx_refsource_BID
    http://www.gentoo.org/security/en/glsa/glsa-20050… vendor-advisoryx_refsource_GENTOO
    http://www.ubuntu.com/usn/usn-83-2 vendor-advisoryx_refsource_UBUNTU
    http://www1.itrc.hp.com/service/cki/docDisplay.do… vendor-advisoryx_refsource_HP
    http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRAKE
    http://www.gentoo.org/security/en/glsa/glsa-20041… vendor-advisoryx_refsource_GENTOO
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    Date Public
    2004-11-17 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T00:31:48.097Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "RHSA-2005:004",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2005-004.html"
              },
              {
                "name": "libxpm-directory-traversal(18146)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18146"
              },
              {
                "name": "USN-83-1",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_UBUNTU",
                  "x_transferred"
                ],
                "url": "http://www.ubuntu.com/usn/usn-83-1"
              },
              {
                "name": "RHSA-2004:537",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2004-537.html"
              },
              {
                "name": "libxpm-image-bo(18142)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18142"
              },
              {
                "name": "13224",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/13224/"
              },
              {
                "name": "oval:org.mitre.oval:def:9943",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9943"
              },
              {
                "name": "FEDORA-2004-433",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "http://www.linuxsecurity.com/content/view/106877/102/"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.x.org/pub/X11R6.8.1/patches/README.xorg-681-CAN-2004-0914.patch"
              },
              {
                "name": "RHSA-2004:610",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2004-610.html"
              },
              {
                "name": "libxpm-improper-memory-access(18144)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18144"
              },
              {
                "name": "GLSA-200502-07",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-07.xml"
              },
              {
                "name": "FLSA-2006:152803",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
              },
              {
                "name": "DSA-607",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2004/dsa-607"
              },
              {
                "name": "11694",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/11694"
              },
              {
                "name": "GLSA-200502-06",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-06.xml"
              },
              {
                "name": "USN-83-2",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_UBUNTU",
                  "x_transferred"
                ],
                "url": "http://www.ubuntu.com/usn/usn-83-2"
              },
              {
                "name": "HPSBTU01228",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_HP",
                  "x_transferred"
                ],
                "url": "http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBTU01228"
              },
              {
                "name": "MDKSA-2004:137",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRAKE",
                  "x_transferred"
                ],
                "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:137"
              },
              {
                "name": "GLSA-200411-28",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200411-28.xml"
              },
              {
                "name": "libxpm-dos(18147)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18147"
              },
              {
                "name": "libxpm-command-execution(18145)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18145"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-11-17T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include (1) multiple integer overflows, (2) out-of-bounds memory accesses, (3) directory traversal, (4) shell metacharacter, (5) endless loops, and (6) memory leaks, which could allow remote attackers to obtain sensitive information, cause a denial of service (application crash), or execute arbitrary code via a certain XPM image file. NOTE: it is highly likely that this candidate will be SPLIT into other candidates in the future, per CVE\u0027s content decisions."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-12-18T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "RHSA-2005:004",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2005-004.html"
            },
            {
              "name": "libxpm-directory-traversal(18146)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18146"
            },
            {
              "name": "USN-83-1",
              "tags": [
                "vendor-advisory",
                "x_refsource_UBUNTU"
              ],
              "url": "http://www.ubuntu.com/usn/usn-83-1"
            },
            {
              "name": "RHSA-2004:537",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2004-537.html"
            },
            {
              "name": "libxpm-image-bo(18142)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18142"
            },
            {
              "name": "13224",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/13224/"
            },
            {
              "name": "oval:org.mitre.oval:def:9943",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9943"
            },
            {
              "name": "FEDORA-2004-433",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "http://www.linuxsecurity.com/content/view/106877/102/"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.x.org/pub/X11R6.8.1/patches/README.xorg-681-CAN-2004-0914.patch"
            },
            {
              "name": "RHSA-2004:610",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2004-610.html"
            },
            {
              "name": "libxpm-improper-memory-access(18144)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18144"
            },
            {
              "name": "GLSA-200502-07",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-07.xml"
            },
            {
              "name": "FLSA-2006:152803",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
            },
            {
              "name": "DSA-607",
              "tags": [
                "vendor-advisory",
                "x_refsource_DEBIAN"
              ],
              "url": "http://www.debian.org/security/2004/dsa-607"
            },
            {
              "name": "11694",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/11694"
            },
            {
              "name": "GLSA-200502-06",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-06.xml"
            },
            {
              "name": "USN-83-2",
              "tags": [
                "vendor-advisory",
                "x_refsource_UBUNTU"
              ],
              "url": "http://www.ubuntu.com/usn/usn-83-2"
            },
            {
              "name": "HPSBTU01228",
              "tags": [
                "vendor-advisory",
                "x_refsource_HP"
              ],
              "url": "http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBTU01228"
            },
            {
              "name": "MDKSA-2004:137",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRAKE"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:137"
            },
            {
              "name": "GLSA-200411-28",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200411-28.xml"
            },
            {
              "name": "libxpm-dos(18147)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18147"
            },
            {
              "name": "libxpm-command-execution(18145)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18145"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2004-0914",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include (1) multiple integer overflows, (2) out-of-bounds memory accesses, (3) directory traversal, (4) shell metacharacter, (5) endless loops, and (6) memory leaks, which could allow remote attackers to obtain sensitive information, cause a denial of service (application crash), or execute arbitrary code via a certain XPM image file. NOTE: it is highly likely that this candidate will be SPLIT into other candidates in the future, per CVE\u0027s content decisions."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "RHSA-2005:004",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2005-004.html"
                },
                {
                  "name": "libxpm-directory-traversal(18146)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18146"
                },
                {
                  "name": "USN-83-1",
                  "refsource": "UBUNTU",
                  "url": "http://www.ubuntu.com/usn/usn-83-1"
                },
                {
                  "name": "RHSA-2004:537",
                  "refsource": "REDHAT",
                  "url": "http://rhn.redhat.com/errata/RHSA-2004-537.html"
                },
                {
                  "name": "libxpm-image-bo(18142)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18142"
                },
                {
                  "name": "13224",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/13224/"
                },
                {
                  "name": "oval:org.mitre.oval:def:9943",
                  "refsource": "OVAL",
                  "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9943"
                },
                {
                  "name": "FEDORA-2004-433",
                  "refsource": "FEDORA",
                  "url": "http://www.linuxsecurity.com/content/view/106877/102/"
                },
                {
                  "name": "http://www.x.org/pub/X11R6.8.1/patches/README.xorg-681-CAN-2004-0914.patch",
                  "refsource": "CONFIRM",
                  "url": "http://www.x.org/pub/X11R6.8.1/patches/README.xorg-681-CAN-2004-0914.patch"
                },
                {
                  "name": "RHSA-2004:610",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2004-610.html"
                },
                {
                  "name": "libxpm-improper-memory-access(18144)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18144"
                },
                {
                  "name": "GLSA-200502-07",
                  "refsource": "GENTOO",
                  "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-07.xml"
                },
                {
                  "name": "FLSA-2006:152803",
                  "refsource": "FEDORA",
                  "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
                },
                {
                  "name": "DSA-607",
                  "refsource": "DEBIAN",
                  "url": "http://www.debian.org/security/2004/dsa-607"
                },
                {
                  "name": "11694",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/11694"
                },
                {
                  "name": "GLSA-200502-06",
                  "refsource": "GENTOO",
                  "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-06.xml"
                },
                {
                  "name": "USN-83-2",
                  "refsource": "UBUNTU",
                  "url": "http://www.ubuntu.com/usn/usn-83-2"
                },
                {
                  "name": "HPSBTU01228",
                  "refsource": "HP",
                  "url": "http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBTU01228"
                },
                {
                  "name": "MDKSA-2004:137",
                  "refsource": "MANDRAKE",
                  "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:137"
                },
                {
                  "name": "GLSA-200411-28",
                  "refsource": "GENTOO",
                  "url": "http://www.gentoo.org/security/en/glsa/glsa-200411-28.xml"
                },
                {
                  "name": "libxpm-dos(18147)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18147"
                },
                {
                  "name": "libxpm-command-execution(18145)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18145"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-0914",
        "datePublished": "2004-12-15T05:00:00.000Z",
        "dateReserved": "2004-09-27T00:00:00.000Z",
        "dateUpdated": "2024-08-08T00:31:48.097Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2004-0688 (GCVE-0-2004-0688)

    Vulnerability from nvd – Published: 2004-09-24 04:00 – Updated: 2024-08-08 00:24
    VLAI
    Summary
    Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) ParsePixels, and (5) ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to execute arbitrary code via a malformed XPM image file.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.kb.cert.org/vuls/id/537878 third-party-advisoryx_refsource_CERT-VN
    http://www.redhat.com/support/errata/RHSA-2005-004.html vendor-advisoryx_refsource_REDHAT
    https://usn.ubuntu.com/27-1/ vendor-advisoryx_refsource_UBUNTU
    http://www.vupen.com/english/advisories/2006/1914 vdb-entryx_refsource_VUPEN
    http://www.gentoo.org/security/en/glsa/glsa-20040… vendor-advisoryx_refsource_GENTOO
    http://www.us-cert.gov/cas/techalerts/TA05-136A.html third-party-advisoryx_refsource_CERT
    http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRAKE
    http://www.securityfocus.com/archive/1/434715/100… vendor-advisoryx_refsource_HP
    http://www.redhat.com/support/errata/RHSA-2004-537.html vendor-advisoryx_refsource_REDHAT
    http://marc.info/?l=bugtraq&m=109530851323415&w=2 mailing-listx_refsource_BUGTRAQ
    http://www.debian.org/security/2004/dsa-560 vendor-advisoryx_refsource_DEBIAN
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    http://scary.beasts.org/security/CESA-2004-003.txt x_refsource_MISC
    http://lists.apple.com/archives/security-announce… vendor-advisoryx_refsource_APPLE
    http://distro.conectiva.com.br/atualizacoes/?id=a… vendor-advisoryx_refsource_CONECTIVA
    http://www.novell.com/linux/security/advisories/2… vendor-advisoryx_refsource_SUSE
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securityfocus.com/bid/11196 vdb-entryx_refsource_BID
    http://www.gentoo.org/security/en/glsa/glsa-20050… vendor-advisoryx_refsource_GENTOO
    http://ftp.x.org/pub/X11R6.8.0/patches/README.xor… x_refsource_CONFIRM
    http://www.redhat.com/archives/fedora-legacy-anno… vendor-advisoryx_refsource_FEDORA
    http://secunia.com/advisories/20235 third-party-advisoryx_refsource_SECUNIA
    http://sunsolve.sun.com/search/document.do?assetk… vendor-advisoryx_refsource_SUNALERT
    Date Public
    2004-09-15 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T00:24:27.110Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "VU#537878",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/537878"
              },
              {
                "name": "RHSA-2005:004",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2005-004.html"
              },
              {
                "name": "USN-27-1",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_UBUNTU",
                  "x_transferred"
                ],
                "url": "https://usn.ubuntu.com/27-1/"
              },
              {
                "name": "ADV-2006-1914",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/1914"
              },
              {
                "name": "GLSA-200409-34",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200409-34.xml"
              },
              {
                "name": "TA05-136A",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT",
                  "x_transferred"
                ],
                "url": "http://www.us-cert.gov/cas/techalerts/TA05-136A.html"
              },
              {
                "name": "MDKSA-2004:098",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRAKE",
                  "x_transferred"
                ],
                "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:098"
              },
              {
                "name": "HPSBUX02119",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_HP",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/434715/100/0/threaded"
              },
              {
                "name": "RHSA-2004:537",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2004-537.html"
              },
              {
                "name": "20040915 CESA-2004-004: libXpm",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=109530851323415\u0026w=2"
              },
              {
                "name": "DSA-560",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2004/dsa-560"
              },
              {
                "name": "oval:org.mitre.oval:def:11796",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11796"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://scary.beasts.org/security/CESA-2004-003.txt"
              },
              {
                "name": "APPLE-SA-2005-05-03",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_APPLE",
                  "x_transferred"
                ],
                "url": "http://lists.apple.com/archives/security-announce/2005/May/msg00001.html"
              },
              {
                "name": "CLA-2005:924",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CONECTIVA",
                  "x_transferred"
                ],
                "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000924"
              },
              {
                "name": "SUSE-SA:2004:034",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SUSE",
                  "x_transferred"
                ],
                "url": "http://www.novell.com/linux/security/advisories/2004_34_xfree86_libs_xshared.html"
              },
              {
                "name": "libxpm-xpmfile-integer-overflow(17416)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17416"
              },
              {
                "name": "11196",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/11196"
              },
              {
                "name": "GLSA-200502-07",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-07.xml"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://ftp.x.org/pub/X11R6.8.0/patches/README.xorg-CAN-2004-0687-0688.patch"
              },
              {
                "name": "FLSA-2006:152803",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
              },
              {
                "name": "20235",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/20235"
              },
              {
                "name": "SSRT4848",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_HP",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/434715/100/0/threaded"
              },
              {
                "name": "57653",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SUNALERT",
                  "x_transferred"
                ],
                "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-57653-1"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-09-15T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) ParsePixels, and (5) ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to execute arbitrary code via a malformed XPM image file."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-19T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "VU#537878",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/537878"
            },
            {
              "name": "RHSA-2005:004",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2005-004.html"
            },
            {
              "name": "USN-27-1",
              "tags": [
                "vendor-advisory",
                "x_refsource_UBUNTU"
              ],
              "url": "https://usn.ubuntu.com/27-1/"
            },
            {
              "name": "ADV-2006-1914",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/1914"
            },
            {
              "name": "GLSA-200409-34",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200409-34.xml"
            },
            {
              "name": "TA05-136A",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT"
              ],
              "url": "http://www.us-cert.gov/cas/techalerts/TA05-136A.html"
            },
            {
              "name": "MDKSA-2004:098",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRAKE"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:098"
            },
            {
              "name": "HPSBUX02119",
              "tags": [
                "vendor-advisory",
                "x_refsource_HP"
              ],
              "url": "http://www.securityfocus.com/archive/1/434715/100/0/threaded"
            },
            {
              "name": "RHSA-2004:537",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2004-537.html"
            },
            {
              "name": "20040915 CESA-2004-004: libXpm",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=109530851323415\u0026w=2"
            },
            {
              "name": "DSA-560",
              "tags": [
                "vendor-advisory",
                "x_refsource_DEBIAN"
              ],
              "url": "http://www.debian.org/security/2004/dsa-560"
            },
            {
              "name": "oval:org.mitre.oval:def:11796",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11796"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://scary.beasts.org/security/CESA-2004-003.txt"
            },
            {
              "name": "APPLE-SA-2005-05-03",
              "tags": [
                "vendor-advisory",
                "x_refsource_APPLE"
              ],
              "url": "http://lists.apple.com/archives/security-announce/2005/May/msg00001.html"
            },
            {
              "name": "CLA-2005:924",
              "tags": [
                "vendor-advisory",
                "x_refsource_CONECTIVA"
              ],
              "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000924"
            },
            {
              "name": "SUSE-SA:2004:034",
              "tags": [
                "vendor-advisory",
                "x_refsource_SUSE"
              ],
              "url": "http://www.novell.com/linux/security/advisories/2004_34_xfree86_libs_xshared.html"
            },
            {
              "name": "libxpm-xpmfile-integer-overflow(17416)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17416"
            },
            {
              "name": "11196",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/11196"
            },
            {
              "name": "GLSA-200502-07",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-07.xml"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://ftp.x.org/pub/X11R6.8.0/patches/README.xorg-CAN-2004-0687-0688.patch"
            },
            {
              "name": "FLSA-2006:152803",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
            },
            {
              "name": "20235",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/20235"
            },
            {
              "name": "SSRT4848",
              "tags": [
                "vendor-advisory",
                "x_refsource_HP"
              ],
              "url": "http://www.securityfocus.com/archive/1/434715/100/0/threaded"
            },
            {
              "name": "57653",
              "tags": [
                "vendor-advisory",
                "x_refsource_SUNALERT"
              ],
              "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-57653-1"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2004-0688",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) ParsePixels, and (5) ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to execute arbitrary code via a malformed XPM image file."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "VU#537878",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/537878"
                },
                {
                  "name": "RHSA-2005:004",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2005-004.html"
                },
                {
                  "name": "USN-27-1",
                  "refsource": "UBUNTU",
                  "url": "https://usn.ubuntu.com/27-1/"
                },
                {
                  "name": "ADV-2006-1914",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/1914"
                },
                {
                  "name": "GLSA-200409-34",
                  "refsource": "GENTOO",
                  "url": "http://www.gentoo.org/security/en/glsa/glsa-200409-34.xml"
                },
                {
                  "name": "TA05-136A",
                  "refsource": "CERT",
                  "url": "http://www.us-cert.gov/cas/techalerts/TA05-136A.html"
                },
                {
                  "name": "MDKSA-2004:098",
                  "refsource": "MANDRAKE",
                  "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:098"
                },
                {
                  "name": "HPSBUX02119",
                  "refsource": "HP",
                  "url": "http://www.securityfocus.com/archive/1/434715/100/0/threaded"
                },
                {
                  "name": "RHSA-2004:537",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2004-537.html"
                },
                {
                  "name": "20040915 CESA-2004-004: libXpm",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=109530851323415\u0026w=2"
                },
                {
                  "name": "DSA-560",
                  "refsource": "DEBIAN",
                  "url": "http://www.debian.org/security/2004/dsa-560"
                },
                {
                  "name": "oval:org.mitre.oval:def:11796",
                  "refsource": "OVAL",
                  "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11796"
                },
                {
                  "name": "http://scary.beasts.org/security/CESA-2004-003.txt",
                  "refsource": "MISC",
                  "url": "http://scary.beasts.org/security/CESA-2004-003.txt"
                },
                {
                  "name": "APPLE-SA-2005-05-03",
                  "refsource": "APPLE",
                  "url": "http://lists.apple.com/archives/security-announce/2005/May/msg00001.html"
                },
                {
                  "name": "CLA-2005:924",
                  "refsource": "CONECTIVA",
                  "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000924"
                },
                {
                  "name": "SUSE-SA:2004:034",
                  "refsource": "SUSE",
                  "url": "http://www.novell.com/linux/security/advisories/2004_34_xfree86_libs_xshared.html"
                },
                {
                  "name": "libxpm-xpmfile-integer-overflow(17416)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17416"
                },
                {
                  "name": "11196",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/11196"
                },
                {
                  "name": "GLSA-200502-07",
                  "refsource": "GENTOO",
                  "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-07.xml"
                },
                {
                  "name": "http://ftp.x.org/pub/X11R6.8.0/patches/README.xorg-CAN-2004-0687-0688.patch",
                  "refsource": "CONFIRM",
                  "url": "http://ftp.x.org/pub/X11R6.8.0/patches/README.xorg-CAN-2004-0687-0688.patch"
                },
                {
                  "name": "FLSA-2006:152803",
                  "refsource": "FEDORA",
                  "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
                },
                {
                  "name": "20235",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/20235"
                },
                {
                  "name": "SSRT4848",
                  "refsource": "HP",
                  "url": "http://www.securityfocus.com/archive/1/434715/100/0/threaded"
                },
                {
                  "name": "57653",
                  "refsource": "SUNALERT",
                  "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-57653-1"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-0688",
        "datePublished": "2004-09-24T04:00:00.000Z",
        "dateReserved": "2004-07-13T00:00:00.000Z",
        "dateUpdated": "2024-08-08T00:24:27.110Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2004-0687 (GCVE-0-2004-0687)

    Vulnerability from nvd – Published: 2004-09-24 00:00 – Updated: 2024-08-08 00:24
    VLAI
    Summary
    Multiple stack-based buffer overflows in (1) xpmParseColors in parse.c, (2) ParseAndPutPixels in create.c, and (3) ParsePixels in parse.c for libXpm before 6.8.1 allow remote attackers to execute arbitrary code via a malformed XPM image file.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.redhat.com/support/errata/RHSA-2005-004.html vendor-advisory
    https://usn.ubuntu.com/27-1/ vendor-advisory
    http://www.vupen.com/english/advisories/2006/1914 vdb-entry
    http://www.gentoo.org/security/en/glsa/glsa-20040… vendor-advisory
    http://www.kb.cert.org/vuls/id/882750 third-party-advisory
    http://www.us-cert.gov/cas/techalerts/TA05-136A.html third-party-advisory
    http://www.mandriva.com/security/advisories?name=… vendor-advisory
    http://www.securityfocus.com/archive/1/434715/100… vendor-advisory
    http://www.redhat.com/support/errata/RHSA-2004-537.html vendor-advisory
    http://marc.info/?l=bugtraq&m=109530851323415&w=2 mailing-list
    http://www.debian.org/security/2004/dsa-560 vendor-advisory
    http://scary.beasts.org/security/CESA-2004-003.txt
    http://lists.apple.com/archives/security-announce… vendor-advisory
    http://distro.conectiva.com.br/atualizacoes/?id=a… vendor-advisory
    http://www.novell.com/linux/security/advisories/2… vendor-advisory
    http://www.securityfocus.com/bid/11196 vdb-entry
    http://www.gentoo.org/security/en/glsa/glsa-20050… vendor-advisory
    http://ftp.x.org/pub/X11R6.8.0/patches/README.xor…
    http://www.redhat.com/archives/fedora-legacy-anno… vendor-advisory
    http://secunia.com/advisories/20235 third-party-advisory
    http://sunsolve.sun.com/search/document.do?assetk… vendor-advisory
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignature
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entry
    http://packetstormsecurity.com/files/170620/Solar…
    Date Public
    2004-09-15 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T00:24:27.112Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "RHSA-2005:004",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2005-004.html"
              },
              {
                "name": "USN-27-1",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://usn.ubuntu.com/27-1/"
              },
              {
                "name": "ADV-2006-1914",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/1914"
              },
              {
                "name": "GLSA-200409-34",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200409-34.xml"
              },
              {
                "name": "VU#882750",
                "tags": [
                  "third-party-advisory",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/882750"
              },
              {
                "name": "TA05-136A",
                "tags": [
                  "third-party-advisory",
                  "x_transferred"
                ],
                "url": "http://www.us-cert.gov/cas/techalerts/TA05-136A.html"
              },
              {
                "name": "MDKSA-2004:098",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:098"
              },
              {
                "name": "HPSBUX02119",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/434715/100/0/threaded"
              },
              {
                "name": "RHSA-2004:537",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2004-537.html"
              },
              {
                "name": "20040915 CESA-2004-004: libXpm",
                "tags": [
                  "mailing-list",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=109530851323415\u0026w=2"
              },
              {
                "name": "DSA-560",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2004/dsa-560"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://scary.beasts.org/security/CESA-2004-003.txt"
              },
              {
                "name": "APPLE-SA-2005-05-03",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.apple.com/archives/security-announce/2005/May/msg00001.html"
              },
              {
                "name": "CLA-2005:924",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000924"
              },
              {
                "name": "SUSE-SA:2004:034",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.novell.com/linux/security/advisories/2004_34_xfree86_libs_xshared.html"
              },
              {
                "name": "11196",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/11196"
              },
              {
                "name": "GLSA-200502-07",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-07.xml"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://ftp.x.org/pub/X11R6.8.0/patches/README.xorg-CAN-2004-0687-0688.patch"
              },
              {
                "name": "FLSA-2006:152803",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
              },
              {
                "name": "20235",
                "tags": [
                  "third-party-advisory",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/20235"
              },
              {
                "name": "SSRT4848",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/434715/100/0/threaded"
              },
              {
                "name": "57653",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-57653-1"
              },
              {
                "name": "oval:org.mitre.oval:def:9187",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9187"
              },
              {
                "name": "libxpm-multiple-stack-bo(17414)",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17414"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/170620/Solaris-10-dtprintinfo-libXm-libXpm-Security-Issues.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-09-15T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple stack-based buffer overflows in (1) xpmParseColors in parse.c, (2) ParseAndPutPixels in create.c, and (3) ParsePixels in parse.c for libXpm before 6.8.1 allow remote attackers to execute arbitrary code via a malformed XPM image file."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-01-20T00:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "RHSA-2005:004",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2005-004.html"
            },
            {
              "name": "USN-27-1",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://usn.ubuntu.com/27-1/"
            },
            {
              "name": "ADV-2006-1914",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/1914"
            },
            {
              "name": "GLSA-200409-34",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200409-34.xml"
            },
            {
              "name": "VU#882750",
              "tags": [
                "third-party-advisory"
              ],
              "url": "http://www.kb.cert.org/vuls/id/882750"
            },
            {
              "name": "TA05-136A",
              "tags": [
                "third-party-advisory"
              ],
              "url": "http://www.us-cert.gov/cas/techalerts/TA05-136A.html"
            },
            {
              "name": "MDKSA-2004:098",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:098"
            },
            {
              "name": "HPSBUX02119",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.securityfocus.com/archive/1/434715/100/0/threaded"
            },
            {
              "name": "RHSA-2004:537",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2004-537.html"
            },
            {
              "name": "20040915 CESA-2004-004: libXpm",
              "tags": [
                "mailing-list"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=109530851323415\u0026w=2"
            },
            {
              "name": "DSA-560",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.debian.org/security/2004/dsa-560"
            },
            {
              "url": "http://scary.beasts.org/security/CESA-2004-003.txt"
            },
            {
              "name": "APPLE-SA-2005-05-03",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.apple.com/archives/security-announce/2005/May/msg00001.html"
            },
            {
              "name": "CLA-2005:924",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000924"
            },
            {
              "name": "SUSE-SA:2004:034",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.novell.com/linux/security/advisories/2004_34_xfree86_libs_xshared.html"
            },
            {
              "name": "11196",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securityfocus.com/bid/11196"
            },
            {
              "name": "GLSA-200502-07",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-07.xml"
            },
            {
              "url": "http://ftp.x.org/pub/X11R6.8.0/patches/README.xorg-CAN-2004-0687-0688.patch"
            },
            {
              "name": "FLSA-2006:152803",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
            },
            {
              "name": "20235",
              "tags": [
                "third-party-advisory"
              ],
              "url": "http://secunia.com/advisories/20235"
            },
            {
              "name": "SSRT4848",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.securityfocus.com/archive/1/434715/100/0/threaded"
            },
            {
              "name": "57653",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-57653-1"
            },
            {
              "name": "oval:org.mitre.oval:def:9187",
              "tags": [
                "vdb-entry",
                "signature"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9187"
            },
            {
              "name": "libxpm-multiple-stack-bo(17414)",
              "tags": [
                "vdb-entry"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17414"
            },
            {
              "url": "http://packetstormsecurity.com/files/170620/Solaris-10-dtprintinfo-libXm-libXpm-Security-Issues.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-0687",
        "datePublished": "2004-09-24T00:00:00.000Z",
        "dateReserved": "2004-07-13T00:00:00.000Z",
        "dateUpdated": "2024-08-08T00:24:27.112Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2004-0419 (GCVE-0-2004-0419)

    Vulnerability from nvd – Published: 2004-06-03 04:00 – Updated: 2024-08-08 00:17
    VLAI
    Summary
    XDM in XFree86 opens a chooserFd TCP socket even when DisplayManager.requestPort is 0, which could allow remote attackers to connect to the port, in violation of the intended restrictions.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://secunia.com/advisories/12019 third-party-advisoryx_refsource_SECUNIA
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://bugs.xfree86.org/show_bug.cgi?id=1376 x_refsource_CONFIRM
    http://www.mandrakesecure.net/en/advisories/advis… vendor-advisoryx_refsource_MANDRAKE
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    http://www.gentoo.org/security/en/glsa/glsa-20040… vendor-advisoryx_refsource_GENTOO
    http://www.ciac.org/ciac/bulletins/p-001.shtml third-party-advisorygovernment-resourcex_refsource_CIAC
    https://bugzilla.redhat.com/bugzilla/show_bug.cgi… x_refsource_CONFIRM
    http://www.securityfocus.com/bid/10423 vdb-entryx_refsource_BID
    http://securitytracker.com/id?1010306 vdb-entryx_refsource_SECTRACK
    http://www.openbsd.org/errata.html#xdm vendor-advisoryx_refsource_OPENBSD
    http://www.redhat.com/support/errata/RHSA-2004-478.html vendor-advisoryx_refsource_REDHAT
    Date Public
    2004-05-19 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T00:17:14.693Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "12019",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/12019"
              },
              {
                "name": "xdm-socket-gain-access(16264)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16264"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://bugs.xfree86.org/show_bug.cgi?id=1376"
              },
              {
                "name": "MDKSA-2004:073",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRAKE",
                  "x_transferred"
                ],
                "url": "http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:073"
              },
              {
                "name": "oval:org.mitre.oval:def:10161",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10161"
              },
              {
                "name": "GLSA-200407-05",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200407-05.xml"
              },
              {
                "name": "P-001",
                "tags": [
                  "third-party-advisory",
                  "government-resource",
                  "x_refsource_CIAC",
                  "x_transferred"
                ],
                "url": "http://www.ciac.org/ciac/bulletins/p-001.shtml"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=124900"
              },
              {
                "name": "10423",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/10423"
              },
              {
                "name": "1010306",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1010306"
              },
              {
                "name": "20040526 008: SECURITY FIX: May 26, 2004",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_OPENBSD",
                  "x_transferred"
                ],
                "url": "http://www.openbsd.org/errata.html#xdm"
              },
              {
                "name": "RHSA-2004:478",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2004-478.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-05-19T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "XDM in XFree86 opens a chooserFd TCP socket even when DisplayManager.requestPort is 0, which could allow remote attackers to connect to the port, in violation of the intended restrictions."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-10-10T00:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "12019",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/12019"
            },
            {
              "name": "xdm-socket-gain-access(16264)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16264"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://bugs.xfree86.org/show_bug.cgi?id=1376"
            },
            {
              "name": "MDKSA-2004:073",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRAKE"
              ],
              "url": "http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:073"
            },
            {
              "name": "oval:org.mitre.oval:def:10161",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10161"
            },
            {
              "name": "GLSA-200407-05",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200407-05.xml"
            },
            {
              "name": "P-001",
              "tags": [
                "third-party-advisory",
                "government-resource",
                "x_refsource_CIAC"
              ],
              "url": "http://www.ciac.org/ciac/bulletins/p-001.shtml"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=124900"
            },
            {
              "name": "10423",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/10423"
            },
            {
              "name": "1010306",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1010306"
            },
            {
              "name": "20040526 008: SECURITY FIX: May 26, 2004",
              "tags": [
                "vendor-advisory",
                "x_refsource_OPENBSD"
              ],
              "url": "http://www.openbsd.org/errata.html#xdm"
            },
            {
              "name": "RHSA-2004:478",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2004-478.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2004-0419",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "XDM in XFree86 opens a chooserFd TCP socket even when DisplayManager.requestPort is 0, which could allow remote attackers to connect to the port, in violation of the intended restrictions."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "12019",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/12019"
                },
                {
                  "name": "xdm-socket-gain-access(16264)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16264"
                },
                {
                  "name": "http://bugs.xfree86.org/show_bug.cgi?id=1376",
                  "refsource": "CONFIRM",
                  "url": "http://bugs.xfree86.org/show_bug.cgi?id=1376"
                },
                {
                  "name": "MDKSA-2004:073",
                  "refsource": "MANDRAKE",
                  "url": "http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:073"
                },
                {
                  "name": "oval:org.mitre.oval:def:10161",
                  "refsource": "OVAL",
                  "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10161"
                },
                {
                  "name": "GLSA-200407-05",
                  "refsource": "GENTOO",
                  "url": "http://www.gentoo.org/security/en/glsa/glsa-200407-05.xml"
                },
                {
                  "name": "P-001",
                  "refsource": "CIAC",
                  "url": "http://www.ciac.org/ciac/bulletins/p-001.shtml"
                },
                {
                  "name": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=124900",
                  "refsource": "CONFIRM",
                  "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=124900"
                },
                {
                  "name": "10423",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/10423"
                },
                {
                  "name": "1010306",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1010306"
                },
                {
                  "name": "20040526 008: SECURITY FIX: May 26, 2004",
                  "refsource": "OPENBSD",
                  "url": "http://www.openbsd.org/errata.html#xdm"
                },
                {
                  "name": "RHSA-2004:478",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2004-478.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-0419",
        "datePublished": "2004-06-03T04:00:00.000Z",
        "dateReserved": "2004-04-16T00:00:00.000Z",
        "dateUpdated": "2024-08-08T00:17:14.693Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-4447 (GCVE-0-2006-4447)

    Vulnerability from cvelistv5 – Published: 2006-08-30 01:00 – Updated: 2024-08-07 19:14
    VLAI
    Summary
    X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtrans, and xterm, does not check the return values for setuid and seteuid calls when attempting to drop privileges, which might allow local users to gain privileges by causing those calls to fail, such as by exceeding a ulimit.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://secunia.com/advisories/21660 third-party-advisoryx_refsource_SECUNIA
    http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRIVA
    http://lists.freedesktop.org/archives/xorg/2006-J… mailing-listx_refsource_MLIST
    http://www.kb.cert.org/vuls/id/300368 third-party-advisoryx_refsource_CERT-VN
    http://www.vupen.com/english/advisories/2006/3409 vdb-entryx_refsource_VUPEN
    http://secunia.com/advisories/21693 third-party-advisoryx_refsource_SECUNIA
    http://www.debian.org/security/2006/dsa-1193 vendor-advisoryx_refsource_DEBIAN
    http://security.gentoo.org/glsa/glsa-200704-22.xml vendor-advisoryx_refsource_GENTOO
    http://secunia.com/advisories/22332 third-party-advisoryx_refsource_SECUNIA
    http://www.vupen.com/english/advisories/2007/0409 vdb-entryx_refsource_VUPEN
    http://security.gentoo.org/glsa/glsa-200608-25.xml vendor-advisoryx_refsource_GENTOO
    http://www.securityfocus.com/bid/23697 vdb-entryx_refsource_BID
    http://secunia.com/advisories/25059 third-party-advisoryx_refsource_SECUNIA
    http://secunia.com/advisories/25032 third-party-advisoryx_refsource_SECUNIA
    http://mail.gnome.org/archives/beast/2006-Decembe… mailing-listx_refsource_MLIST
    http://www.securityfocus.com/bid/19742 vdb-entryx_refsource_BID
    http://secunia.com/advisories/21650 third-party-advisoryx_refsource_SECUNIA
    Date Public
    2006-06-20 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T19:14:46.372Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "21660",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/21660"
              },
              {
                "name": "MDKSA-2006:160",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRIVA",
                  "x_transferred"
                ],
                "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:160"
              },
              {
                "name": "[xorg] 20060620 X.Org security advisory: setuid return value check problems",
                "tags": [
                  "mailing-list",
                  "x_refsource_MLIST",
                  "x_transferred"
                ],
                "url": "http://lists.freedesktop.org/archives/xorg/2006-June/016146.html"
              },
              {
                "name": "VU#300368",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/300368"
              },
              {
                "name": "ADV-2006-3409",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/3409"
              },
              {
                "name": "21693",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/21693"
              },
              {
                "name": "DSA-1193",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2006/dsa-1193"
              },
              {
                "name": "GLSA-200704-22",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://security.gentoo.org/glsa/glsa-200704-22.xml"
              },
              {
                "name": "22332",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/22332"
              },
              {
                "name": "ADV-2007-0409",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/0409"
              },
              {
                "name": "GLSA-200608-25",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://security.gentoo.org/glsa/glsa-200608-25.xml"
              },
              {
                "name": "23697",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/23697"
              },
              {
                "name": "25059",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/25059"
              },
              {
                "name": "25032",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/25032"
              },
              {
                "name": "[beast] 20061228 ANNOUNCE: BEAST/BSE v0.7.1",
                "tags": [
                  "mailing-list",
                  "x_refsource_MLIST",
                  "x_transferred"
                ],
                "url": "http://mail.gnome.org/archives/beast/2006-December/msg00025.html"
              },
              {
                "name": "19742",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/19742"
              },
              {
                "name": "21650",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/21650"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-06-20T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtrans, and xterm, does not check the return values for setuid and seteuid calls when attempting to drop privileges, which might allow local users to gain privileges by causing those calls to fail, such as by exceeding a ulimit."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2006-09-07T09:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "21660",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/21660"
            },
            {
              "name": "MDKSA-2006:160",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRIVA"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:160"
            },
            {
              "name": "[xorg] 20060620 X.Org security advisory: setuid return value check problems",
              "tags": [
                "mailing-list",
                "x_refsource_MLIST"
              ],
              "url": "http://lists.freedesktop.org/archives/xorg/2006-June/016146.html"
            },
            {
              "name": "VU#300368",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/300368"
            },
            {
              "name": "ADV-2006-3409",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/3409"
            },
            {
              "name": "21693",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/21693"
            },
            {
              "name": "DSA-1193",
              "tags": [
                "vendor-advisory",
                "x_refsource_DEBIAN"
              ],
              "url": "http://www.debian.org/security/2006/dsa-1193"
            },
            {
              "name": "GLSA-200704-22",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://security.gentoo.org/glsa/glsa-200704-22.xml"
            },
            {
              "name": "22332",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/22332"
            },
            {
              "name": "ADV-2007-0409",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/0409"
            },
            {
              "name": "GLSA-200608-25",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://security.gentoo.org/glsa/glsa-200608-25.xml"
            },
            {
              "name": "23697",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/23697"
            },
            {
              "name": "25059",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/25059"
            },
            {
              "name": "25032",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/25032"
            },
            {
              "name": "[beast] 20061228 ANNOUNCE: BEAST/BSE v0.7.1",
              "tags": [
                "mailing-list",
                "x_refsource_MLIST"
              ],
              "url": "http://mail.gnome.org/archives/beast/2006-December/msg00025.html"
            },
            {
              "name": "19742",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/19742"
            },
            {
              "name": "21650",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/21650"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-4447",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "X.Org and XFree86, including libX11, xdm, xf86dga, xinit, xload, xtrans, and xterm, does not check the return values for setuid and seteuid calls when attempting to drop privileges, which might allow local users to gain privileges by causing those calls to fail, such as by exceeding a ulimit."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "21660",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/21660"
                },
                {
                  "name": "MDKSA-2006:160",
                  "refsource": "MANDRIVA",
                  "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:160"
                },
                {
                  "name": "[xorg] 20060620 X.Org security advisory: setuid return value check problems",
                  "refsource": "MLIST",
                  "url": "http://lists.freedesktop.org/archives/xorg/2006-June/016146.html"
                },
                {
                  "name": "VU#300368",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/300368"
                },
                {
                  "name": "ADV-2006-3409",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/3409"
                },
                {
                  "name": "21693",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/21693"
                },
                {
                  "name": "DSA-1193",
                  "refsource": "DEBIAN",
                  "url": "http://www.debian.org/security/2006/dsa-1193"
                },
                {
                  "name": "GLSA-200704-22",
                  "refsource": "GENTOO",
                  "url": "http://security.gentoo.org/glsa/glsa-200704-22.xml"
                },
                {
                  "name": "22332",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/22332"
                },
                {
                  "name": "ADV-2007-0409",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/0409"
                },
                {
                  "name": "GLSA-200608-25",
                  "refsource": "GENTOO",
                  "url": "http://security.gentoo.org/glsa/glsa-200608-25.xml"
                },
                {
                  "name": "23697",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/23697"
                },
                {
                  "name": "25059",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/25059"
                },
                {
                  "name": "25032",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/25032"
                },
                {
                  "name": "[beast] 20061228 ANNOUNCE: BEAST/BSE v0.7.1",
                  "refsource": "MLIST",
                  "url": "http://mail.gnome.org/archives/beast/2006-December/msg00025.html"
                },
                {
                  "name": "19742",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/19742"
                },
                {
                  "name": "21650",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/21650"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-4447",
        "datePublished": "2006-08-30T01:00:00.000Z",
        "dateReserved": "2006-08-29T00:00:00.000Z",
        "dateUpdated": "2024-08-07T19:14:46.372Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-1526 (GCVE-0-2006-1526)

    Vulnerability from cvelistv5 – Published: 2006-05-02 21:00 – Updated: 2024-08-07 17:12
    VLAI
    Summary
    Buffer overflow in the X render (Xrender) extension in X.org X server 6.8.0 up to allows attackers to cause a denial of service (crash), as demonstrated by the (1) XRenderCompositeTriStrip and (2) XRenderCompositeTriFan requests in the rendertest from XCB xcb/xcb-demo, which leads to an incorrect memory allocation due to a typo in an expression that uses a "&" instead of a "*" operator. NOTE: the subject line of the original announcement used an incorrect CVE number for this issue.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.redhat.com/support/errata/RHSA-2006-04… vendor-advisoryx_refsource_REDHAT
    http://secunia.com/advisories/19921 third-party-advisoryx_refsource_SECUNIA
    http://secunia.com/advisories/19943 third-party-advisoryx_refsource_SECUNIA
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://secunia.com/advisories/19956 third-party-advisoryx_refsource_SECUNIA
    http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRIVA
    http://www.vupen.com/english/advisories/2006/1617 vdb-entryx_refsource_VUPEN
    http://secunia.com/advisories/19951 third-party-advisoryx_refsource_SECUNIA
    http://www.novell.com/linux/security/advisories/2… vendor-advisoryx_refsource_SUSE
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    http://www.securityfocus.com/bid/17795 vdb-entryx_refsource_BID
    http://sunsolve.sun.com/search/document.do?assetk… vendor-advisoryx_refsource_SUNALERT
    http://www.kb.cert.org/vuls/id/633257 third-party-advisoryx_refsource_CERT-VN
    http://securitytracker.com/id?1016018 vdb-entryx_refsource_SECTRACK
    http://www.gentoo.org/security/en/glsa/glsa-20060… vendor-advisoryx_refsource_GENTOO
    http://secunia.com/advisories/19983 third-party-advisoryx_refsource_SECUNIA
    http://www.openbsd.org/errata38.html#xorg vendor-advisoryx_refsource_OPENBSD
    http://www.trustix.org/errata/2006/0024 vendor-advisoryx_refsource_TRUSTIX
    https://bugs.freedesktop.org/show_bug.cgi?id=6642 x_refsource_CONFIRM
    http://secunia.com/advisories/19900 third-party-advisoryx_refsource_SECUNIA
    https://usn.ubuntu.com/280-1/ vendor-advisoryx_refsource_UBUNTU
    http://www.securityfocus.com/archive/1/436327/100… vendor-advisoryx_refsource_FEDORA
    http://secunia.com/advisories/19915 third-party-advisoryx_refsource_SECUNIA
    http://lists.freedesktop.org/archives/xorg/2006-M… mailing-listx_refsource_MLIST
    http://secunia.com/advisories/19916 third-party-advisoryx_refsource_SECUNIA
    Date Public
    2006-05-02 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T17:12:22.400Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "RHSA-2006:0451",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2006-0451.html"
              },
              {
                "name": "19921",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19921"
              },
              {
                "name": "19943",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19943"
              },
              {
                "name": "xorg-xrender-bo(26200)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26200"
              },
              {
                "name": "19956",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19956"
              },
              {
                "name": "MDKSA-2006:081",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRIVA",
                  "x_transferred"
                ],
                "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:081"
              },
              {
                "name": "ADV-2006-1617",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/1617"
              },
              {
                "name": "19951",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19951"
              },
              {
                "name": "SUSE-SA:2006:023",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SUSE",
                  "x_transferred"
                ],
                "url": "http://www.novell.com/linux/security/advisories/2006_05_03.html"
              },
              {
                "name": "oval:org.mitre.oval:def:9929",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9929"
              },
              {
                "name": "17795",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/17795"
              },
              {
                "name": "102339",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SUNALERT",
                  "x_transferred"
                ],
                "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102339-1"
              },
              {
                "name": "VU#633257",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/633257"
              },
              {
                "name": "1016018",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1016018"
              },
              {
                "name": "GLSA-200605-02",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200605-02.xml"
              },
              {
                "name": "19983",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19983"
              },
              {
                "name": "[3.8] 007: SECURITY FIX: May 2, 2006",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_OPENBSD",
                  "x_transferred"
                ],
                "url": "http://www.openbsd.org/errata38.html#xorg"
              },
              {
                "name": "2006-0024",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_TRUSTIX",
                  "x_transferred"
                ],
                "url": "http://www.trustix.org/errata/2006/0024"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://bugs.freedesktop.org/show_bug.cgi?id=6642"
              },
              {
                "name": "19900",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19900"
              },
              {
                "name": "USN-280-1",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_UBUNTU",
                  "x_transferred"
                ],
                "url": "https://usn.ubuntu.com/280-1/"
              },
              {
                "name": "FLSA:190777",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/436327/100/0/threaded"
              },
              {
                "name": "19915",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19915"
              },
              {
                "name": "[xorg] 20060502 [CVE-2006-1525] X.Org security advisory: Buffer overflow in the Xrender extension",
                "tags": [
                  "mailing-list",
                  "x_refsource_MLIST",
                  "x_transferred"
                ],
                "url": "http://lists.freedesktop.org/archives/xorg/2006-May/015136.html"
              },
              {
                "name": "19916",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19916"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-05-02T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Buffer overflow in the X render (Xrender) extension in X.org X server 6.8.0 up to allows attackers to cause a denial of service (crash), as demonstrated by the (1) XRenderCompositeTriStrip and (2) XRenderCompositeTriFan requests in the rendertest from XCB xcb/xcb-demo, which leads to an incorrect memory allocation due to a typo in an expression that uses a \"\u0026\" instead of a \"*\" operator. NOTE: the subject line of the original announcement used an incorrect CVE number for this issue."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-18T14:57:01.000Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "RHSA-2006:0451",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2006-0451.html"
            },
            {
              "name": "19921",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19921"
            },
            {
              "name": "19943",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19943"
            },
            {
              "name": "xorg-xrender-bo(26200)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26200"
            },
            {
              "name": "19956",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19956"
            },
            {
              "name": "MDKSA-2006:081",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRIVA"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:081"
            },
            {
              "name": "ADV-2006-1617",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/1617"
            },
            {
              "name": "19951",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19951"
            },
            {
              "name": "SUSE-SA:2006:023",
              "tags": [
                "vendor-advisory",
                "x_refsource_SUSE"
              ],
              "url": "http://www.novell.com/linux/security/advisories/2006_05_03.html"
            },
            {
              "name": "oval:org.mitre.oval:def:9929",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9929"
            },
            {
              "name": "17795",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/17795"
            },
            {
              "name": "102339",
              "tags": [
                "vendor-advisory",
                "x_refsource_SUNALERT"
              ],
              "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102339-1"
            },
            {
              "name": "VU#633257",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/633257"
            },
            {
              "name": "1016018",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1016018"
            },
            {
              "name": "GLSA-200605-02",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200605-02.xml"
            },
            {
              "name": "19983",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19983"
            },
            {
              "name": "[3.8] 007: SECURITY FIX: May 2, 2006",
              "tags": [
                "vendor-advisory",
                "x_refsource_OPENBSD"
              ],
              "url": "http://www.openbsd.org/errata38.html#xorg"
            },
            {
              "name": "2006-0024",
              "tags": [
                "vendor-advisory",
                "x_refsource_TRUSTIX"
              ],
              "url": "http://www.trustix.org/errata/2006/0024"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://bugs.freedesktop.org/show_bug.cgi?id=6642"
            },
            {
              "name": "19900",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19900"
            },
            {
              "name": "USN-280-1",
              "tags": [
                "vendor-advisory",
                "x_refsource_UBUNTU"
              ],
              "url": "https://usn.ubuntu.com/280-1/"
            },
            {
              "name": "FLSA:190777",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "http://www.securityfocus.com/archive/1/436327/100/0/threaded"
            },
            {
              "name": "19915",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19915"
            },
            {
              "name": "[xorg] 20060502 [CVE-2006-1525] X.Org security advisory: Buffer overflow in the Xrender extension",
              "tags": [
                "mailing-list",
                "x_refsource_MLIST"
              ],
              "url": "http://lists.freedesktop.org/archives/xorg/2006-May/015136.html"
            },
            {
              "name": "19916",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19916"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2006-1526",
        "datePublished": "2006-05-02T21:00:00.000Z",
        "dateReserved": "2006-03-30T00:00:00.000Z",
        "dateUpdated": "2024-08-07T17:12:22.400Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-0745 (GCVE-0-2006-0745)

    Vulnerability from cvelistv5 – Published: 2006-03-21 02:00 – Updated: 2024-08-07 16:48
    VLAI
    Summary
    X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended restrictions and (1) execute arbitrary code via the -modulepath command line option or (2) overwrite arbitrary files via -logfile.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRIVA
    http://www.securityfocus.com/archive/1/428230/100… mailing-listx_refsource_BUGTRAQ
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.redhat.com/archives/fedora-announce-li… vendor-advisoryx_refsource_FEDORA
    http://support.avaya.com/elmodocs2/security/ASA-2… x_refsource_CONFIRM
    http://www.securityfocus.com/archive/1/428183/100… mailing-listx_refsource_BUGTRAQ
    http://securitytracker.com/id?1015793 vdb-entryx_refsource_SECTRACK
    http://secunia.com/advisories/19256 third-party-advisoryx_refsource_SECUNIA
    http://sunsolve.sun.com/search/document.do?assetk… vendor-advisoryx_refsource_SUNALERT
    http://www.osvdb.org/24000 vdb-entryx_refsource_OSVDB
    http://secunia.com/advisories/19676 third-party-advisoryx_refsource_SECUNIA
    http://secunia.com/advisories/19316 third-party-advisoryx_refsource_SECUNIA
    http://www.osvdb.org/24001 vdb-entryx_refsource_OSVDB
    http://www.vupen.com/english/advisories/2006/1017 vdb-entryx_refsource_VUPEN
    http://securityreason.com/securityalert/606 third-party-advisoryx_refsource_SREASON
    http://www.securityfocus.com/bid/17169 vdb-entryx_refsource_BID
    http://www.novell.com/linux/security/advisories/2… vendor-advisoryx_refsource_SUSE
    http://www.vupen.com/english/advisories/2006/1028 vdb-entryx_refsource_VUPEN
    http://secunia.com/advisories/19307 third-party-advisoryx_refsource_SECUNIA
    http://secunia.com/advisories/19311 third-party-advisoryx_refsource_SECUNIA
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    Date Public
    2006-03-20 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T16:48:55.745Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "MDKSA-2006:056",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRIVA",
                  "x_transferred"
                ],
                "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:056"
              },
              {
                "name": "20060320 Re: [CVE-2006-0745] X.Org Security Advisory: privilege escalation and DoS in X11R6.9, X11R7.0",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/428230/100/0/threaded"
              },
              {
                "name": "xorg-geteuid-privilege-escalation(25341)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25341"
              },
              {
                "name": "FEDORA-2006-172",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/archives/fedora-announce-list/2006-March/msg00026.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-078.htm"
              },
              {
                "name": "20060320 [CVE-2006-0745] X.Org Security Advisory: privilege escalation and DoS in X11R6.9, X11R7.0",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/428183/100/0/threaded"
              },
              {
                "name": "1015793",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1015793"
              },
              {
                "name": "19256",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19256"
              },
              {
                "name": "102252",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SUNALERT",
                  "x_transferred"
                ],
                "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102252-1"
              },
              {
                "name": "24000",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/24000"
              },
              {
                "name": "19676",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19676"
              },
              {
                "name": "19316",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19316"
              },
              {
                "name": "24001",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/24001"
              },
              {
                "name": "ADV-2006-1017",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/1017"
              },
              {
                "name": "606",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SREASON",
                  "x_transferred"
                ],
                "url": "http://securityreason.com/securityalert/606"
              },
              {
                "name": "17169",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/17169"
              },
              {
                "name": "SUSE-SA:2006:016",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SUSE",
                  "x_transferred"
                ],
                "url": "http://www.novell.com/linux/security/advisories/2006_16_xorgx11server.html"
              },
              {
                "name": "ADV-2006-1028",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/1028"
              },
              {
                "name": "19307",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19307"
              },
              {
                "name": "19311",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19311"
              },
              {
                "name": "oval:org.mitre.oval:def:1697",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1697"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-03-20T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended restrictions and (1) execute arbitrary code via the -modulepath command line option or (2) overwrite arbitrary files via -logfile."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-19T14:57:01.000Z",
            "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
            "shortName": "redhat"
          },
          "references": [
            {
              "name": "MDKSA-2006:056",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRIVA"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:056"
            },
            {
              "name": "20060320 Re: [CVE-2006-0745] X.Org Security Advisory: privilege escalation and DoS in X11R6.9, X11R7.0",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/428230/100/0/threaded"
            },
            {
              "name": "xorg-geteuid-privilege-escalation(25341)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25341"
            },
            {
              "name": "FEDORA-2006-172",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "http://www.redhat.com/archives/fedora-announce-list/2006-March/msg00026.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-078.htm"
            },
            {
              "name": "20060320 [CVE-2006-0745] X.Org Security Advisory: privilege escalation and DoS in X11R6.9, X11R7.0",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/428183/100/0/threaded"
            },
            {
              "name": "1015793",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1015793"
            },
            {
              "name": "19256",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19256"
            },
            {
              "name": "102252",
              "tags": [
                "vendor-advisory",
                "x_refsource_SUNALERT"
              ],
              "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102252-1"
            },
            {
              "name": "24000",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/24000"
            },
            {
              "name": "19676",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19676"
            },
            {
              "name": "19316",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19316"
            },
            {
              "name": "24001",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/24001"
            },
            {
              "name": "ADV-2006-1017",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/1017"
            },
            {
              "name": "606",
              "tags": [
                "third-party-advisory",
                "x_refsource_SREASON"
              ],
              "url": "http://securityreason.com/securityalert/606"
            },
            {
              "name": "17169",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/17169"
            },
            {
              "name": "SUSE-SA:2006:016",
              "tags": [
                "vendor-advisory",
                "x_refsource_SUSE"
              ],
              "url": "http://www.novell.com/linux/security/advisories/2006_16_xorgx11server.html"
            },
            {
              "name": "ADV-2006-1028",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/1028"
            },
            {
              "name": "19307",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19307"
            },
            {
              "name": "19311",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19311"
            },
            {
              "name": "oval:org.mitre.oval:def:1697",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1697"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "secalert@redhat.com",
              "ID": "CVE-2006-0745",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "X.Org server (xorg-server) 1.0.0 and later, X11R6.9.0, and X11R7.0 inadvertently treats the address of the geteuid function as if it is the return value of a call to geteuid, which allows local users to bypass intended restrictions and (1) execute arbitrary code via the -modulepath command line option or (2) overwrite arbitrary files via -logfile."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "MDKSA-2006:056",
                  "refsource": "MANDRIVA",
                  "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:056"
                },
                {
                  "name": "20060320 Re: [CVE-2006-0745] X.Org Security Advisory: privilege escalation and DoS in X11R6.9, X11R7.0",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/428230/100/0/threaded"
                },
                {
                  "name": "xorg-geteuid-privilege-escalation(25341)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25341"
                },
                {
                  "name": "FEDORA-2006-172",
                  "refsource": "FEDORA",
                  "url": "http://www.redhat.com/archives/fedora-announce-list/2006-March/msg00026.html"
                },
                {
                  "name": "http://support.avaya.com/elmodocs2/security/ASA-2006-078.htm",
                  "refsource": "CONFIRM",
                  "url": "http://support.avaya.com/elmodocs2/security/ASA-2006-078.htm"
                },
                {
                  "name": "20060320 [CVE-2006-0745] X.Org Security Advisory: privilege escalation and DoS in X11R6.9, X11R7.0",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/428183/100/0/threaded"
                },
                {
                  "name": "1015793",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1015793"
                },
                {
                  "name": "19256",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/19256"
                },
                {
                  "name": "102252",
                  "refsource": "SUNALERT",
                  "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102252-1"
                },
                {
                  "name": "24000",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/24000"
                },
                {
                  "name": "19676",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/19676"
                },
                {
                  "name": "19316",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/19316"
                },
                {
                  "name": "24001",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/24001"
                },
                {
                  "name": "ADV-2006-1017",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/1017"
                },
                {
                  "name": "606",
                  "refsource": "SREASON",
                  "url": "http://securityreason.com/securityalert/606"
                },
                {
                  "name": "17169",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/17169"
                },
                {
                  "name": "SUSE-SA:2006:016",
                  "refsource": "SUSE",
                  "url": "http://www.novell.com/linux/security/advisories/2006_16_xorgx11server.html"
                },
                {
                  "name": "ADV-2006-1028",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/1028"
                },
                {
                  "name": "19307",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/19307"
                },
                {
                  "name": "19311",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/19311"
                },
                {
                  "name": "oval:org.mitre.oval:def:1697",
                  "refsource": "OVAL",
                  "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1697"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "assignerShortName": "redhat",
        "cveId": "CVE-2006-0745",
        "datePublished": "2006-03-21T02:00:00.000Z",
        "dateReserved": "2006-02-17T00:00:00.000Z",
        "dateUpdated": "2024-08-07T16:48:55.745Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2005-0605 (GCVE-0-2005-0605)

    Vulnerability from cvelistv5 – Published: 2005-03-04 05:00 – Updated: 2024-08-07 21:21
    VLAI
    Summary
    scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.redhat.com/support/errata/RHSA-2005-331.html vendor-advisoryx_refsource_REDHAT
    http://www.redhat.com/support/errata/RHSA-2005-412.html vendor-advisoryx_refsource_REDHAT
    http://securitytracker.com/id?1013339 vdb-entryx_refsource_SECTRACK
    http://secunia.com/advisories/18049 third-party-advisoryx_refsource_SECUNIA
    ftp://patches.sgi.com/support/free/security/advis… vendor-advisoryx_refsource_SGI
    ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-20… vendor-advisoryx_refsource_SCO
    http://bugs.gentoo.org/show_bug.cgi?id=83598 x_refsource_CONFIRM
    http://www.gentoo.org/security/en/glsa/glsa-20050… vendor-advisoryx_refsource_GENTOO
    http://www.debian.org/security/2005/dsa-723 vendor-advisoryx_refsource_DEBIAN
    http://secunia.com/advisories/19624 third-party-advisoryx_refsource_SECUNIA
    https://bugs.freedesktop.org/attachment.cgi?id=1909 x_refsource_CONFIRM
    http://lists.apple.com/archives/security-announce… vendor-advisoryx_refsource_APPLE
    http://secunia.com/advisories/18316 third-party-advisoryx_refsource_SECUNIA
    http://secunia.com/advisories/14460 third-party-advisoryx_refsource_SECUNIA
    http://www.redhat.com/support/errata/RHSA-2005-198.html vendor-advisoryx_refsource_REDHAT
    http://www.redhat.com/archives/fedora-legacy-anno… vendor-advisoryx_refsource_FEDORA
    http://www.redhat.com/support/errata/RHSA-2005-044.html vendor-advisoryx_refsource_REDHAT
    http://security.gentoo.org/glsa/glsa-200503-08.xml vendor-advisoryx_refsource_GENTOO
    http://www.securityfocus.com/bid/12714 vdb-entryx_refsource_BID
    http://www.redhat.com/support/errata/RHSA-2008-02… vendor-advisoryx_refsource_REDHAT
    http://bugs.gentoo.org/show_bug.cgi?id=83655 x_refsource_CONFIRM
    http://www.redhat.com/support/errata/RHSA-2005-473.html vendor-advisoryx_refsource_REDHAT
    http://lists.apple.com/archives/security-announce… vendor-advisoryx_refsource_APPLE
    ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005… vendor-advisoryx_refsource_SCO
    https://usn.ubuntu.com/97-1/ vendor-advisoryx_refsource_UBUNTU
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    https://usn.ubuntu.com/92-1/ vendor-advisoryx_refsource_UBUNTU
    Date Public
    2005-03-01 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T21:21:06.249Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "RHSA-2005:331",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2005-331.html"
              },
              {
                "name": "RHSA-2005:412",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2005-412.html"
              },
              {
                "name": "1013339",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1013339"
              },
              {
                "name": "18049",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/18049"
              },
              {
                "name": "20060403-01-U",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SGI",
                  "x_transferred"
                ],
                "url": "ftp://patches.sgi.com/support/free/security/advisories/20060403-01-U"
              },
              {
                "name": "SCOSA-2006.5",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SCO",
                  "x_transferred"
                ],
                "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.5/SCOSA-2006.5.txt"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://bugs.gentoo.org/show_bug.cgi?id=83598"
              },
              {
                "name": "GLSA-200503-15",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200503-15.xml"
              },
              {
                "name": "DSA-723",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2005/dsa-723"
              },
              {
                "name": "19624",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/19624"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://bugs.freedesktop.org/attachment.cgi?id=1909"
              },
              {
                "name": "APPLE-SA-2005-08-15",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_APPLE",
                  "x_transferred"
                ],
                "url": "http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html"
              },
              {
                "name": "18316",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/18316"
              },
              {
                "name": "14460",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/14460"
              },
              {
                "name": "RHSA-2005:198",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2005-198.html"
              },
              {
                "name": "FLSA-2006:152803",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
              },
              {
                "name": "RHSA-2005:044",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2005-044.html"
              },
              {
                "name": "GLSA-200503-08",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://security.gentoo.org/glsa/glsa-200503-08.xml"
              },
              {
                "name": "12714",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/12714"
              },
              {
                "name": "RHSA-2008:0261",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2008-0261.html"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://bugs.gentoo.org/show_bug.cgi?id=83655"
              },
              {
                "name": "RHSA-2005:473",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2005-473.html"
              },
              {
                "name": "APPLE-SA-2005-08-17",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_APPLE",
                  "x_transferred"
                ],
                "url": "http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html"
              },
              {
                "name": "SCOSA-2005.57",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SCO",
                  "x_transferred"
                ],
                "url": "ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.57/SCOSA-2005.57.txt"
              },
              {
                "name": "USN-97-1",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_UBUNTU",
                  "x_transferred"
                ],
                "url": "https://usn.ubuntu.com/97-1/"
              },
              {
                "name": "oval:org.mitre.oval:def:10411",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10411"
              },
              {
                "name": "USN-92-1",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_UBUNTU",
                  "x_transferred"
                ],
                "url": "https://usn.ubuntu.com/92-1/"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2005-03-01T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-03T20:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "RHSA-2005:331",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2005-331.html"
            },
            {
              "name": "RHSA-2005:412",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2005-412.html"
            },
            {
              "name": "1013339",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1013339"
            },
            {
              "name": "18049",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/18049"
            },
            {
              "name": "20060403-01-U",
              "tags": [
                "vendor-advisory",
                "x_refsource_SGI"
              ],
              "url": "ftp://patches.sgi.com/support/free/security/advisories/20060403-01-U"
            },
            {
              "name": "SCOSA-2006.5",
              "tags": [
                "vendor-advisory",
                "x_refsource_SCO"
              ],
              "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.5/SCOSA-2006.5.txt"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://bugs.gentoo.org/show_bug.cgi?id=83598"
            },
            {
              "name": "GLSA-200503-15",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200503-15.xml"
            },
            {
              "name": "DSA-723",
              "tags": [
                "vendor-advisory",
                "x_refsource_DEBIAN"
              ],
              "url": "http://www.debian.org/security/2005/dsa-723"
            },
            {
              "name": "19624",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/19624"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://bugs.freedesktop.org/attachment.cgi?id=1909"
            },
            {
              "name": "APPLE-SA-2005-08-15",
              "tags": [
                "vendor-advisory",
                "x_refsource_APPLE"
              ],
              "url": "http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html"
            },
            {
              "name": "18316",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/18316"
            },
            {
              "name": "14460",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/14460"
            },
            {
              "name": "RHSA-2005:198",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2005-198.html"
            },
            {
              "name": "FLSA-2006:152803",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
            },
            {
              "name": "RHSA-2005:044",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2005-044.html"
            },
            {
              "name": "GLSA-200503-08",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://security.gentoo.org/glsa/glsa-200503-08.xml"
            },
            {
              "name": "12714",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/12714"
            },
            {
              "name": "RHSA-2008:0261",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2008-0261.html"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://bugs.gentoo.org/show_bug.cgi?id=83655"
            },
            {
              "name": "RHSA-2005:473",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2005-473.html"
            },
            {
              "name": "APPLE-SA-2005-08-17",
              "tags": [
                "vendor-advisory",
                "x_refsource_APPLE"
              ],
              "url": "http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html"
            },
            {
              "name": "SCOSA-2005.57",
              "tags": [
                "vendor-advisory",
                "x_refsource_SCO"
              ],
              "url": "ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.57/SCOSA-2005.57.txt"
            },
            {
              "name": "USN-97-1",
              "tags": [
                "vendor-advisory",
                "x_refsource_UBUNTU"
              ],
              "url": "https://usn.ubuntu.com/97-1/"
            },
            {
              "name": "oval:org.mitre.oval:def:10411",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10411"
            },
            {
              "name": "USN-92-1",
              "tags": [
                "vendor-advisory",
                "x_refsource_UBUNTU"
              ],
              "url": "https://usn.ubuntu.com/92-1/"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2005-0605",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "RHSA-2005:331",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2005-331.html"
                },
                {
                  "name": "RHSA-2005:412",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2005-412.html"
                },
                {
                  "name": "1013339",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1013339"
                },
                {
                  "name": "18049",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/18049"
                },
                {
                  "name": "20060403-01-U",
                  "refsource": "SGI",
                  "url": "ftp://patches.sgi.com/support/free/security/advisories/20060403-01-U"
                },
                {
                  "name": "SCOSA-2006.5",
                  "refsource": "SCO",
                  "url": "ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.5/SCOSA-2006.5.txt"
                },
                {
                  "name": "http://bugs.gentoo.org/show_bug.cgi?id=83598",
                  "refsource": "CONFIRM",
                  "url": "http://bugs.gentoo.org/show_bug.cgi?id=83598"
                },
                {
                  "name": "GLSA-200503-15",
                  "refsource": "GENTOO",
                  "url": "http://www.gentoo.org/security/en/glsa/glsa-200503-15.xml"
                },
                {
                  "name": "DSA-723",
                  "refsource": "DEBIAN",
                  "url": "http://www.debian.org/security/2005/dsa-723"
                },
                {
                  "name": "19624",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/19624"
                },
                {
                  "name": "https://bugs.freedesktop.org/attachment.cgi?id=1909",
                  "refsource": "CONFIRM",
                  "url": "https://bugs.freedesktop.org/attachment.cgi?id=1909"
                },
                {
                  "name": "APPLE-SA-2005-08-15",
                  "refsource": "APPLE",
                  "url": "http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html"
                },
                {
                  "name": "18316",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/18316"
                },
                {
                  "name": "14460",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/14460"
                },
                {
                  "name": "RHSA-2005:198",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2005-198.html"
                },
                {
                  "name": "FLSA-2006:152803",
                  "refsource": "FEDORA",
                  "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
                },
                {
                  "name": "RHSA-2005:044",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2005-044.html"
                },
                {
                  "name": "GLSA-200503-08",
                  "refsource": "GENTOO",
                  "url": "http://security.gentoo.org/glsa/glsa-200503-08.xml"
                },
                {
                  "name": "12714",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/12714"
                },
                {
                  "name": "RHSA-2008:0261",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2008-0261.html"
                },
                {
                  "name": "http://bugs.gentoo.org/show_bug.cgi?id=83655",
                  "refsource": "CONFIRM",
                  "url": "http://bugs.gentoo.org/show_bug.cgi?id=83655"
                },
                {
                  "name": "RHSA-2005:473",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2005-473.html"
                },
                {
                  "name": "APPLE-SA-2005-08-17",
                  "refsource": "APPLE",
                  "url": "http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html"
                },
                {
                  "name": "SCOSA-2005.57",
                  "refsource": "SCO",
                  "url": "ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.57/SCOSA-2005.57.txt"
                },
                {
                  "name": "USN-97-1",
                  "refsource": "UBUNTU",
                  "url": "https://usn.ubuntu.com/97-1/"
                },
                {
                  "name": "oval:org.mitre.oval:def:10411",
                  "refsource": "OVAL",
                  "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10411"
                },
                {
                  "name": "USN-92-1",
                  "refsource": "UBUNTU",
                  "url": "https://usn.ubuntu.com/92-1/"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2005-0605",
        "datePublished": "2005-03-04T05:00:00.000Z",
        "dateReserved": "2005-03-01T00:00:00.000Z",
        "dateUpdated": "2024-08-07T21:21:06.249Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2004-0914 (GCVE-0-2004-0914)

    Vulnerability from cvelistv5 – Published: 2004-12-15 05:00 – Updated: 2024-08-08 00:31
    VLAI
    Summary
    Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include (1) multiple integer overflows, (2) out-of-bounds memory accesses, (3) directory traversal, (4) shell metacharacter, (5) endless loops, and (6) memory leaks, which could allow remote attackers to obtain sensitive information, cause a denial of service (application crash), or execute arbitrary code via a certain XPM image file. NOTE: it is highly likely that this candidate will be SPLIT into other candidates in the future, per CVE's content decisions.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.redhat.com/support/errata/RHSA-2005-004.html vendor-advisoryx_refsource_REDHAT
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.ubuntu.com/usn/usn-83-1 vendor-advisoryx_refsource_UBUNTU
    http://rhn.redhat.com/errata/RHSA-2004-537.html vendor-advisoryx_refsource_REDHAT
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://secunia.com/advisories/13224/ third-party-advisoryx_refsource_SECUNIA
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    http://www.linuxsecurity.com/content/view/106877/102/ vendor-advisoryx_refsource_FEDORA
    http://www.x.org/pub/X11R6.8.1/patches/README.xor… x_refsource_CONFIRM
    http://www.redhat.com/support/errata/RHSA-2004-610.html vendor-advisoryx_refsource_REDHAT
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.gentoo.org/security/en/glsa/glsa-20050… vendor-advisoryx_refsource_GENTOO
    http://www.redhat.com/archives/fedora-legacy-anno… vendor-advisoryx_refsource_FEDORA
    http://www.debian.org/security/2004/dsa-607 vendor-advisoryx_refsource_DEBIAN
    http://www.securityfocus.com/bid/11694 vdb-entryx_refsource_BID
    http://www.gentoo.org/security/en/glsa/glsa-20050… vendor-advisoryx_refsource_GENTOO
    http://www.ubuntu.com/usn/usn-83-2 vendor-advisoryx_refsource_UBUNTU
    http://www1.itrc.hp.com/service/cki/docDisplay.do… vendor-advisoryx_refsource_HP
    http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRAKE
    http://www.gentoo.org/security/en/glsa/glsa-20041… vendor-advisoryx_refsource_GENTOO
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    Date Public
    2004-11-17 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T00:31:48.097Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "RHSA-2005:004",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2005-004.html"
              },
              {
                "name": "libxpm-directory-traversal(18146)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18146"
              },
              {
                "name": "USN-83-1",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_UBUNTU",
                  "x_transferred"
                ],
                "url": "http://www.ubuntu.com/usn/usn-83-1"
              },
              {
                "name": "RHSA-2004:537",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://rhn.redhat.com/errata/RHSA-2004-537.html"
              },
              {
                "name": "libxpm-image-bo(18142)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18142"
              },
              {
                "name": "13224",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/13224/"
              },
              {
                "name": "oval:org.mitre.oval:def:9943",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9943"
              },
              {
                "name": "FEDORA-2004-433",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "http://www.linuxsecurity.com/content/view/106877/102/"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.x.org/pub/X11R6.8.1/patches/README.xorg-681-CAN-2004-0914.patch"
              },
              {
                "name": "RHSA-2004:610",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2004-610.html"
              },
              {
                "name": "libxpm-improper-memory-access(18144)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18144"
              },
              {
                "name": "GLSA-200502-07",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-07.xml"
              },
              {
                "name": "FLSA-2006:152803",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
              },
              {
                "name": "DSA-607",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2004/dsa-607"
              },
              {
                "name": "11694",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/11694"
              },
              {
                "name": "GLSA-200502-06",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-06.xml"
              },
              {
                "name": "USN-83-2",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_UBUNTU",
                  "x_transferred"
                ],
                "url": "http://www.ubuntu.com/usn/usn-83-2"
              },
              {
                "name": "HPSBTU01228",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_HP",
                  "x_transferred"
                ],
                "url": "http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBTU01228"
              },
              {
                "name": "MDKSA-2004:137",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRAKE",
                  "x_transferred"
                ],
                "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:137"
              },
              {
                "name": "GLSA-200411-28",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200411-28.xml"
              },
              {
                "name": "libxpm-dos(18147)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18147"
              },
              {
                "name": "libxpm-command-execution(18145)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18145"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-11-17T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include (1) multiple integer overflows, (2) out-of-bounds memory accesses, (3) directory traversal, (4) shell metacharacter, (5) endless loops, and (6) memory leaks, which could allow remote attackers to obtain sensitive information, cause a denial of service (application crash), or execute arbitrary code via a certain XPM image file. NOTE: it is highly likely that this candidate will be SPLIT into other candidates in the future, per CVE\u0027s content decisions."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-12-18T15:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "RHSA-2005:004",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2005-004.html"
            },
            {
              "name": "libxpm-directory-traversal(18146)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18146"
            },
            {
              "name": "USN-83-1",
              "tags": [
                "vendor-advisory",
                "x_refsource_UBUNTU"
              ],
              "url": "http://www.ubuntu.com/usn/usn-83-1"
            },
            {
              "name": "RHSA-2004:537",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://rhn.redhat.com/errata/RHSA-2004-537.html"
            },
            {
              "name": "libxpm-image-bo(18142)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18142"
            },
            {
              "name": "13224",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/13224/"
            },
            {
              "name": "oval:org.mitre.oval:def:9943",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9943"
            },
            {
              "name": "FEDORA-2004-433",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "http://www.linuxsecurity.com/content/view/106877/102/"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.x.org/pub/X11R6.8.1/patches/README.xorg-681-CAN-2004-0914.patch"
            },
            {
              "name": "RHSA-2004:610",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2004-610.html"
            },
            {
              "name": "libxpm-improper-memory-access(18144)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18144"
            },
            {
              "name": "GLSA-200502-07",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-07.xml"
            },
            {
              "name": "FLSA-2006:152803",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
            },
            {
              "name": "DSA-607",
              "tags": [
                "vendor-advisory",
                "x_refsource_DEBIAN"
              ],
              "url": "http://www.debian.org/security/2004/dsa-607"
            },
            {
              "name": "11694",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/11694"
            },
            {
              "name": "GLSA-200502-06",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-06.xml"
            },
            {
              "name": "USN-83-2",
              "tags": [
                "vendor-advisory",
                "x_refsource_UBUNTU"
              ],
              "url": "http://www.ubuntu.com/usn/usn-83-2"
            },
            {
              "name": "HPSBTU01228",
              "tags": [
                "vendor-advisory",
                "x_refsource_HP"
              ],
              "url": "http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBTU01228"
            },
            {
              "name": "MDKSA-2004:137",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRAKE"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:137"
            },
            {
              "name": "GLSA-200411-28",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200411-28.xml"
            },
            {
              "name": "libxpm-dos(18147)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18147"
            },
            {
              "name": "libxpm-command-execution(18145)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18145"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2004-0914",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include (1) multiple integer overflows, (2) out-of-bounds memory accesses, (3) directory traversal, (4) shell metacharacter, (5) endless loops, and (6) memory leaks, which could allow remote attackers to obtain sensitive information, cause a denial of service (application crash), or execute arbitrary code via a certain XPM image file. NOTE: it is highly likely that this candidate will be SPLIT into other candidates in the future, per CVE\u0027s content decisions."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "RHSA-2005:004",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2005-004.html"
                },
                {
                  "name": "libxpm-directory-traversal(18146)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18146"
                },
                {
                  "name": "USN-83-1",
                  "refsource": "UBUNTU",
                  "url": "http://www.ubuntu.com/usn/usn-83-1"
                },
                {
                  "name": "RHSA-2004:537",
                  "refsource": "REDHAT",
                  "url": "http://rhn.redhat.com/errata/RHSA-2004-537.html"
                },
                {
                  "name": "libxpm-image-bo(18142)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18142"
                },
                {
                  "name": "13224",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/13224/"
                },
                {
                  "name": "oval:org.mitre.oval:def:9943",
                  "refsource": "OVAL",
                  "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9943"
                },
                {
                  "name": "FEDORA-2004-433",
                  "refsource": "FEDORA",
                  "url": "http://www.linuxsecurity.com/content/view/106877/102/"
                },
                {
                  "name": "http://www.x.org/pub/X11R6.8.1/patches/README.xorg-681-CAN-2004-0914.patch",
                  "refsource": "CONFIRM",
                  "url": "http://www.x.org/pub/X11R6.8.1/patches/README.xorg-681-CAN-2004-0914.patch"
                },
                {
                  "name": "RHSA-2004:610",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2004-610.html"
                },
                {
                  "name": "libxpm-improper-memory-access(18144)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18144"
                },
                {
                  "name": "GLSA-200502-07",
                  "refsource": "GENTOO",
                  "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-07.xml"
                },
                {
                  "name": "FLSA-2006:152803",
                  "refsource": "FEDORA",
                  "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
                },
                {
                  "name": "DSA-607",
                  "refsource": "DEBIAN",
                  "url": "http://www.debian.org/security/2004/dsa-607"
                },
                {
                  "name": "11694",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/11694"
                },
                {
                  "name": "GLSA-200502-06",
                  "refsource": "GENTOO",
                  "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-06.xml"
                },
                {
                  "name": "USN-83-2",
                  "refsource": "UBUNTU",
                  "url": "http://www.ubuntu.com/usn/usn-83-2"
                },
                {
                  "name": "HPSBTU01228",
                  "refsource": "HP",
                  "url": "http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBTU01228"
                },
                {
                  "name": "MDKSA-2004:137",
                  "refsource": "MANDRAKE",
                  "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:137"
                },
                {
                  "name": "GLSA-200411-28",
                  "refsource": "GENTOO",
                  "url": "http://www.gentoo.org/security/en/glsa/glsa-200411-28.xml"
                },
                {
                  "name": "libxpm-dos(18147)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18147"
                },
                {
                  "name": "libxpm-command-execution(18145)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18145"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-0914",
        "datePublished": "2004-12-15T05:00:00.000Z",
        "dateReserved": "2004-09-27T00:00:00.000Z",
        "dateUpdated": "2024-08-08T00:31:48.097Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2004-0688 (GCVE-0-2004-0688)

    Vulnerability from cvelistv5 – Published: 2004-09-24 04:00 – Updated: 2024-08-08 00:24
    VLAI
    Summary
    Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) ParsePixels, and (5) ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to execute arbitrary code via a malformed XPM image file.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.kb.cert.org/vuls/id/537878 third-party-advisoryx_refsource_CERT-VN
    http://www.redhat.com/support/errata/RHSA-2005-004.html vendor-advisoryx_refsource_REDHAT
    https://usn.ubuntu.com/27-1/ vendor-advisoryx_refsource_UBUNTU
    http://www.vupen.com/english/advisories/2006/1914 vdb-entryx_refsource_VUPEN
    http://www.gentoo.org/security/en/glsa/glsa-20040… vendor-advisoryx_refsource_GENTOO
    http://www.us-cert.gov/cas/techalerts/TA05-136A.html third-party-advisoryx_refsource_CERT
    http://www.mandriva.com/security/advisories?name=… vendor-advisoryx_refsource_MANDRAKE
    http://www.securityfocus.com/archive/1/434715/100… vendor-advisoryx_refsource_HP
    http://www.redhat.com/support/errata/RHSA-2004-537.html vendor-advisoryx_refsource_REDHAT
    http://marc.info/?l=bugtraq&m=109530851323415&w=2 mailing-listx_refsource_BUGTRAQ
    http://www.debian.org/security/2004/dsa-560 vendor-advisoryx_refsource_DEBIAN
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    http://scary.beasts.org/security/CESA-2004-003.txt x_refsource_MISC
    http://lists.apple.com/archives/security-announce… vendor-advisoryx_refsource_APPLE
    http://distro.conectiva.com.br/atualizacoes/?id=a… vendor-advisoryx_refsource_CONECTIVA
    http://www.novell.com/linux/security/advisories/2… vendor-advisoryx_refsource_SUSE
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securityfocus.com/bid/11196 vdb-entryx_refsource_BID
    http://www.gentoo.org/security/en/glsa/glsa-20050… vendor-advisoryx_refsource_GENTOO
    http://ftp.x.org/pub/X11R6.8.0/patches/README.xor… x_refsource_CONFIRM
    http://www.redhat.com/archives/fedora-legacy-anno… vendor-advisoryx_refsource_FEDORA
    http://secunia.com/advisories/20235 third-party-advisoryx_refsource_SECUNIA
    http://sunsolve.sun.com/search/document.do?assetk… vendor-advisoryx_refsource_SUNALERT
    Date Public
    2004-09-15 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T00:24:27.110Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "VU#537878",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/537878"
              },
              {
                "name": "RHSA-2005:004",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2005-004.html"
              },
              {
                "name": "USN-27-1",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_UBUNTU",
                  "x_transferred"
                ],
                "url": "https://usn.ubuntu.com/27-1/"
              },
              {
                "name": "ADV-2006-1914",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/1914"
              },
              {
                "name": "GLSA-200409-34",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200409-34.xml"
              },
              {
                "name": "TA05-136A",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT",
                  "x_transferred"
                ],
                "url": "http://www.us-cert.gov/cas/techalerts/TA05-136A.html"
              },
              {
                "name": "MDKSA-2004:098",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRAKE",
                  "x_transferred"
                ],
                "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:098"
              },
              {
                "name": "HPSBUX02119",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_HP",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/434715/100/0/threaded"
              },
              {
                "name": "RHSA-2004:537",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2004-537.html"
              },
              {
                "name": "20040915 CESA-2004-004: libXpm",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=109530851323415\u0026w=2"
              },
              {
                "name": "DSA-560",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_DEBIAN",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2004/dsa-560"
              },
              {
                "name": "oval:org.mitre.oval:def:11796",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11796"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://scary.beasts.org/security/CESA-2004-003.txt"
              },
              {
                "name": "APPLE-SA-2005-05-03",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_APPLE",
                  "x_transferred"
                ],
                "url": "http://lists.apple.com/archives/security-announce/2005/May/msg00001.html"
              },
              {
                "name": "CLA-2005:924",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_CONECTIVA",
                  "x_transferred"
                ],
                "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000924"
              },
              {
                "name": "SUSE-SA:2004:034",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SUSE",
                  "x_transferred"
                ],
                "url": "http://www.novell.com/linux/security/advisories/2004_34_xfree86_libs_xshared.html"
              },
              {
                "name": "libxpm-xpmfile-integer-overflow(17416)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17416"
              },
              {
                "name": "11196",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/11196"
              },
              {
                "name": "GLSA-200502-07",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-07.xml"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://ftp.x.org/pub/X11R6.8.0/patches/README.xorg-CAN-2004-0687-0688.patch"
              },
              {
                "name": "FLSA-2006:152803",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_FEDORA",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
              },
              {
                "name": "20235",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/20235"
              },
              {
                "name": "SSRT4848",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_HP",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/434715/100/0/threaded"
              },
              {
                "name": "57653",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_SUNALERT",
                  "x_transferred"
                ],
                "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-57653-1"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-09-15T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) ParsePixels, and (5) ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to execute arbitrary code via a malformed XPM image file."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-19T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "VU#537878",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/537878"
            },
            {
              "name": "RHSA-2005:004",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2005-004.html"
            },
            {
              "name": "USN-27-1",
              "tags": [
                "vendor-advisory",
                "x_refsource_UBUNTU"
              ],
              "url": "https://usn.ubuntu.com/27-1/"
            },
            {
              "name": "ADV-2006-1914",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/1914"
            },
            {
              "name": "GLSA-200409-34",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200409-34.xml"
            },
            {
              "name": "TA05-136A",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT"
              ],
              "url": "http://www.us-cert.gov/cas/techalerts/TA05-136A.html"
            },
            {
              "name": "MDKSA-2004:098",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRAKE"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:098"
            },
            {
              "name": "HPSBUX02119",
              "tags": [
                "vendor-advisory",
                "x_refsource_HP"
              ],
              "url": "http://www.securityfocus.com/archive/1/434715/100/0/threaded"
            },
            {
              "name": "RHSA-2004:537",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2004-537.html"
            },
            {
              "name": "20040915 CESA-2004-004: libXpm",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=109530851323415\u0026w=2"
            },
            {
              "name": "DSA-560",
              "tags": [
                "vendor-advisory",
                "x_refsource_DEBIAN"
              ],
              "url": "http://www.debian.org/security/2004/dsa-560"
            },
            {
              "name": "oval:org.mitre.oval:def:11796",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11796"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://scary.beasts.org/security/CESA-2004-003.txt"
            },
            {
              "name": "APPLE-SA-2005-05-03",
              "tags": [
                "vendor-advisory",
                "x_refsource_APPLE"
              ],
              "url": "http://lists.apple.com/archives/security-announce/2005/May/msg00001.html"
            },
            {
              "name": "CLA-2005:924",
              "tags": [
                "vendor-advisory",
                "x_refsource_CONECTIVA"
              ],
              "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000924"
            },
            {
              "name": "SUSE-SA:2004:034",
              "tags": [
                "vendor-advisory",
                "x_refsource_SUSE"
              ],
              "url": "http://www.novell.com/linux/security/advisories/2004_34_xfree86_libs_xshared.html"
            },
            {
              "name": "libxpm-xpmfile-integer-overflow(17416)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17416"
            },
            {
              "name": "11196",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/11196"
            },
            {
              "name": "GLSA-200502-07",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-07.xml"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://ftp.x.org/pub/X11R6.8.0/patches/README.xorg-CAN-2004-0687-0688.patch"
            },
            {
              "name": "FLSA-2006:152803",
              "tags": [
                "vendor-advisory",
                "x_refsource_FEDORA"
              ],
              "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
            },
            {
              "name": "20235",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/20235"
            },
            {
              "name": "SSRT4848",
              "tags": [
                "vendor-advisory",
                "x_refsource_HP"
              ],
              "url": "http://www.securityfocus.com/archive/1/434715/100/0/threaded"
            },
            {
              "name": "57653",
              "tags": [
                "vendor-advisory",
                "x_refsource_SUNALERT"
              ],
              "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-57653-1"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2004-0688",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) ParsePixels, and (5) ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to execute arbitrary code via a malformed XPM image file."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "VU#537878",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/537878"
                },
                {
                  "name": "RHSA-2005:004",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2005-004.html"
                },
                {
                  "name": "USN-27-1",
                  "refsource": "UBUNTU",
                  "url": "https://usn.ubuntu.com/27-1/"
                },
                {
                  "name": "ADV-2006-1914",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/1914"
                },
                {
                  "name": "GLSA-200409-34",
                  "refsource": "GENTOO",
                  "url": "http://www.gentoo.org/security/en/glsa/glsa-200409-34.xml"
                },
                {
                  "name": "TA05-136A",
                  "refsource": "CERT",
                  "url": "http://www.us-cert.gov/cas/techalerts/TA05-136A.html"
                },
                {
                  "name": "MDKSA-2004:098",
                  "refsource": "MANDRAKE",
                  "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:098"
                },
                {
                  "name": "HPSBUX02119",
                  "refsource": "HP",
                  "url": "http://www.securityfocus.com/archive/1/434715/100/0/threaded"
                },
                {
                  "name": "RHSA-2004:537",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2004-537.html"
                },
                {
                  "name": "20040915 CESA-2004-004: libXpm",
                  "refsource": "BUGTRAQ",
                  "url": "http://marc.info/?l=bugtraq\u0026m=109530851323415\u0026w=2"
                },
                {
                  "name": "DSA-560",
                  "refsource": "DEBIAN",
                  "url": "http://www.debian.org/security/2004/dsa-560"
                },
                {
                  "name": "oval:org.mitre.oval:def:11796",
                  "refsource": "OVAL",
                  "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11796"
                },
                {
                  "name": "http://scary.beasts.org/security/CESA-2004-003.txt",
                  "refsource": "MISC",
                  "url": "http://scary.beasts.org/security/CESA-2004-003.txt"
                },
                {
                  "name": "APPLE-SA-2005-05-03",
                  "refsource": "APPLE",
                  "url": "http://lists.apple.com/archives/security-announce/2005/May/msg00001.html"
                },
                {
                  "name": "CLA-2005:924",
                  "refsource": "CONECTIVA",
                  "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000924"
                },
                {
                  "name": "SUSE-SA:2004:034",
                  "refsource": "SUSE",
                  "url": "http://www.novell.com/linux/security/advisories/2004_34_xfree86_libs_xshared.html"
                },
                {
                  "name": "libxpm-xpmfile-integer-overflow(17416)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17416"
                },
                {
                  "name": "11196",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/11196"
                },
                {
                  "name": "GLSA-200502-07",
                  "refsource": "GENTOO",
                  "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-07.xml"
                },
                {
                  "name": "http://ftp.x.org/pub/X11R6.8.0/patches/README.xorg-CAN-2004-0687-0688.patch",
                  "refsource": "CONFIRM",
                  "url": "http://ftp.x.org/pub/X11R6.8.0/patches/README.xorg-CAN-2004-0687-0688.patch"
                },
                {
                  "name": "FLSA-2006:152803",
                  "refsource": "FEDORA",
                  "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
                },
                {
                  "name": "20235",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/20235"
                },
                {
                  "name": "SSRT4848",
                  "refsource": "HP",
                  "url": "http://www.securityfocus.com/archive/1/434715/100/0/threaded"
                },
                {
                  "name": "57653",
                  "refsource": "SUNALERT",
                  "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-57653-1"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-0688",
        "datePublished": "2004-09-24T04:00:00.000Z",
        "dateReserved": "2004-07-13T00:00:00.000Z",
        "dateUpdated": "2024-08-08T00:24:27.110Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2004-0687 (GCVE-0-2004-0687)

    Vulnerability from cvelistv5 – Published: 2004-09-24 00:00 – Updated: 2024-08-08 00:24
    VLAI
    Summary
    Multiple stack-based buffer overflows in (1) xpmParseColors in parse.c, (2) ParseAndPutPixels in create.c, and (3) ParsePixels in parse.c for libXpm before 6.8.1 allow remote attackers to execute arbitrary code via a malformed XPM image file.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.redhat.com/support/errata/RHSA-2005-004.html vendor-advisory
    https://usn.ubuntu.com/27-1/ vendor-advisory
    http://www.vupen.com/english/advisories/2006/1914 vdb-entry
    http://www.gentoo.org/security/en/glsa/glsa-20040… vendor-advisory
    http://www.kb.cert.org/vuls/id/882750 third-party-advisory
    http://www.us-cert.gov/cas/techalerts/TA05-136A.html third-party-advisory
    http://www.mandriva.com/security/advisories?name=… vendor-advisory
    http://www.securityfocus.com/archive/1/434715/100… vendor-advisory
    http://www.redhat.com/support/errata/RHSA-2004-537.html vendor-advisory
    http://marc.info/?l=bugtraq&m=109530851323415&w=2 mailing-list
    http://www.debian.org/security/2004/dsa-560 vendor-advisory
    http://scary.beasts.org/security/CESA-2004-003.txt
    http://lists.apple.com/archives/security-announce… vendor-advisory
    http://distro.conectiva.com.br/atualizacoes/?id=a… vendor-advisory
    http://www.novell.com/linux/security/advisories/2… vendor-advisory
    http://www.securityfocus.com/bid/11196 vdb-entry
    http://www.gentoo.org/security/en/glsa/glsa-20050… vendor-advisory
    http://ftp.x.org/pub/X11R6.8.0/patches/README.xor…
    http://www.redhat.com/archives/fedora-legacy-anno… vendor-advisory
    http://secunia.com/advisories/20235 third-party-advisory
    http://sunsolve.sun.com/search/document.do?assetk… vendor-advisory
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignature
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entry
    http://packetstormsecurity.com/files/170620/Solar…
    Date Public
    2004-09-15 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T00:24:27.112Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "RHSA-2005:004",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2005-004.html"
              },
              {
                "name": "USN-27-1",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "https://usn.ubuntu.com/27-1/"
              },
              {
                "name": "ADV-2006-1914",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/1914"
              },
              {
                "name": "GLSA-200409-34",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200409-34.xml"
              },
              {
                "name": "VU#882750",
                "tags": [
                  "third-party-advisory",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/882750"
              },
              {
                "name": "TA05-136A",
                "tags": [
                  "third-party-advisory",
                  "x_transferred"
                ],
                "url": "http://www.us-cert.gov/cas/techalerts/TA05-136A.html"
              },
              {
                "name": "MDKSA-2004:098",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:098"
              },
              {
                "name": "HPSBUX02119",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/434715/100/0/threaded"
              },
              {
                "name": "RHSA-2004:537",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2004-537.html"
              },
              {
                "name": "20040915 CESA-2004-004: libXpm",
                "tags": [
                  "mailing-list",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=bugtraq\u0026m=109530851323415\u0026w=2"
              },
              {
                "name": "DSA-560",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.debian.org/security/2004/dsa-560"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://scary.beasts.org/security/CESA-2004-003.txt"
              },
              {
                "name": "APPLE-SA-2005-05-03",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://lists.apple.com/archives/security-announce/2005/May/msg00001.html"
              },
              {
                "name": "CLA-2005:924",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000924"
              },
              {
                "name": "SUSE-SA:2004:034",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.novell.com/linux/security/advisories/2004_34_xfree86_libs_xshared.html"
              },
              {
                "name": "11196",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/11196"
              },
              {
                "name": "GLSA-200502-07",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-07.xml"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://ftp.x.org/pub/X11R6.8.0/patches/README.xorg-CAN-2004-0687-0688.patch"
              },
              {
                "name": "FLSA-2006:152803",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
              },
              {
                "name": "20235",
                "tags": [
                  "third-party-advisory",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/20235"
              },
              {
                "name": "SSRT4848",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/434715/100/0/threaded"
              },
              {
                "name": "57653",
                "tags": [
                  "vendor-advisory",
                  "x_transferred"
                ],
                "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-57653-1"
              },
              {
                "name": "oval:org.mitre.oval:def:9187",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9187"
              },
              {
                "name": "libxpm-multiple-stack-bo(17414)",
                "tags": [
                  "vdb-entry",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17414"
              },
              {
                "tags": [
                  "x_transferred"
                ],
                "url": "http://packetstormsecurity.com/files/170620/Solaris-10-dtprintinfo-libXm-libXpm-Security-Issues.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-09-15T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple stack-based buffer overflows in (1) xpmParseColors in parse.c, (2) ParseAndPutPixels in create.c, and (3) ParsePixels in parse.c for libXpm before 6.8.1 allow remote attackers to execute arbitrary code via a malformed XPM image file."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2023-01-20T00:00:00.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "RHSA-2005:004",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2005-004.html"
            },
            {
              "name": "USN-27-1",
              "tags": [
                "vendor-advisory"
              ],
              "url": "https://usn.ubuntu.com/27-1/"
            },
            {
              "name": "ADV-2006-1914",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/1914"
            },
            {
              "name": "GLSA-200409-34",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200409-34.xml"
            },
            {
              "name": "VU#882750",
              "tags": [
                "third-party-advisory"
              ],
              "url": "http://www.kb.cert.org/vuls/id/882750"
            },
            {
              "name": "TA05-136A",
              "tags": [
                "third-party-advisory"
              ],
              "url": "http://www.us-cert.gov/cas/techalerts/TA05-136A.html"
            },
            {
              "name": "MDKSA-2004:098",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:098"
            },
            {
              "name": "HPSBUX02119",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.securityfocus.com/archive/1/434715/100/0/threaded"
            },
            {
              "name": "RHSA-2004:537",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2004-537.html"
            },
            {
              "name": "20040915 CESA-2004-004: libXpm",
              "tags": [
                "mailing-list"
              ],
              "url": "http://marc.info/?l=bugtraq\u0026m=109530851323415\u0026w=2"
            },
            {
              "name": "DSA-560",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.debian.org/security/2004/dsa-560"
            },
            {
              "url": "http://scary.beasts.org/security/CESA-2004-003.txt"
            },
            {
              "name": "APPLE-SA-2005-05-03",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://lists.apple.com/archives/security-announce/2005/May/msg00001.html"
            },
            {
              "name": "CLA-2005:924",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://distro.conectiva.com.br/atualizacoes/?id=a\u0026anuncio=000924"
            },
            {
              "name": "SUSE-SA:2004:034",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.novell.com/linux/security/advisories/2004_34_xfree86_libs_xshared.html"
            },
            {
              "name": "11196",
              "tags": [
                "vdb-entry"
              ],
              "url": "http://www.securityfocus.com/bid/11196"
            },
            {
              "name": "GLSA-200502-07",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200502-07.xml"
            },
            {
              "url": "http://ftp.x.org/pub/X11R6.8.0/patches/README.xorg-CAN-2004-0687-0688.patch"
            },
            {
              "name": "FLSA-2006:152803",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html"
            },
            {
              "name": "20235",
              "tags": [
                "third-party-advisory"
              ],
              "url": "http://secunia.com/advisories/20235"
            },
            {
              "name": "SSRT4848",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://www.securityfocus.com/archive/1/434715/100/0/threaded"
            },
            {
              "name": "57653",
              "tags": [
                "vendor-advisory"
              ],
              "url": "http://sunsolve.sun.com/search/document.do?assetkey=1-26-57653-1"
            },
            {
              "name": "oval:org.mitre.oval:def:9187",
              "tags": [
                "vdb-entry",
                "signature"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9187"
            },
            {
              "name": "libxpm-multiple-stack-bo(17414)",
              "tags": [
                "vdb-entry"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17414"
            },
            {
              "url": "http://packetstormsecurity.com/files/170620/Solaris-10-dtprintinfo-libXm-libXpm-Security-Issues.html"
            }
          ]
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-0687",
        "datePublished": "2004-09-24T00:00:00.000Z",
        "dateReserved": "2004-07-13T00:00:00.000Z",
        "dateUpdated": "2024-08-08T00:24:27.112Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2004-0419 (GCVE-0-2004-0419)

    Vulnerability from cvelistv5 – Published: 2004-06-03 04:00 – Updated: 2024-08-08 00:17
    VLAI
    Summary
    XDM in XFree86 opens a chooserFd TCP socket even when DisplayManager.requestPort is 0, which could allow remote attackers to connect to the port, in violation of the intended restrictions.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://secunia.com/advisories/12019 third-party-advisoryx_refsource_SECUNIA
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://bugs.xfree86.org/show_bug.cgi?id=1376 x_refsource_CONFIRM
    http://www.mandrakesecure.net/en/advisories/advis… vendor-advisoryx_refsource_MANDRAKE
    https://oval.cisecurity.org/repository/search/def… vdb-entrysignaturex_refsource_OVAL
    http://www.gentoo.org/security/en/glsa/glsa-20040… vendor-advisoryx_refsource_GENTOO
    http://www.ciac.org/ciac/bulletins/p-001.shtml third-party-advisorygovernment-resourcex_refsource_CIAC
    https://bugzilla.redhat.com/bugzilla/show_bug.cgi… x_refsource_CONFIRM
    http://www.securityfocus.com/bid/10423 vdb-entryx_refsource_BID
    http://securitytracker.com/id?1010306 vdb-entryx_refsource_SECTRACK
    http://www.openbsd.org/errata.html#xdm vendor-advisoryx_refsource_OPENBSD
    http://www.redhat.com/support/errata/RHSA-2004-478.html vendor-advisoryx_refsource_REDHAT
    Date Public
    2004-05-19 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T00:17:14.693Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "12019",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/12019"
              },
              {
                "name": "xdm-socket-gain-access(16264)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16264"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://bugs.xfree86.org/show_bug.cgi?id=1376"
              },
              {
                "name": "MDKSA-2004:073",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_MANDRAKE",
                  "x_transferred"
                ],
                "url": "http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:073"
              },
              {
                "name": "oval:org.mitre.oval:def:10161",
                "tags": [
                  "vdb-entry",
                  "signature",
                  "x_refsource_OVAL",
                  "x_transferred"
                ],
                "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10161"
              },
              {
                "name": "GLSA-200407-05",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_GENTOO",
                  "x_transferred"
                ],
                "url": "http://www.gentoo.org/security/en/glsa/glsa-200407-05.xml"
              },
              {
                "name": "P-001",
                "tags": [
                  "third-party-advisory",
                  "government-resource",
                  "x_refsource_CIAC",
                  "x_transferred"
                ],
                "url": "http://www.ciac.org/ciac/bulletins/p-001.shtml"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=124900"
              },
              {
                "name": "10423",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/10423"
              },
              {
                "name": "1010306",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1010306"
              },
              {
                "name": "20040526 008: SECURITY FIX: May 26, 2004",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_OPENBSD",
                  "x_transferred"
                ],
                "url": "http://www.openbsd.org/errata.html#xdm"
              },
              {
                "name": "RHSA-2004:478",
                "tags": [
                  "vendor-advisory",
                  "x_refsource_REDHAT",
                  "x_transferred"
                ],
                "url": "http://www.redhat.com/support/errata/RHSA-2004-478.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-05-19T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "XDM in XFree86 opens a chooserFd TCP socket even when DisplayManager.requestPort is 0, which could allow remote attackers to connect to the port, in violation of the intended restrictions."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-10-10T00:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "12019",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/12019"
            },
            {
              "name": "xdm-socket-gain-access(16264)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16264"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://bugs.xfree86.org/show_bug.cgi?id=1376"
            },
            {
              "name": "MDKSA-2004:073",
              "tags": [
                "vendor-advisory",
                "x_refsource_MANDRAKE"
              ],
              "url": "http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:073"
            },
            {
              "name": "oval:org.mitre.oval:def:10161",
              "tags": [
                "vdb-entry",
                "signature",
                "x_refsource_OVAL"
              ],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10161"
            },
            {
              "name": "GLSA-200407-05",
              "tags": [
                "vendor-advisory",
                "x_refsource_GENTOO"
              ],
              "url": "http://www.gentoo.org/security/en/glsa/glsa-200407-05.xml"
            },
            {
              "name": "P-001",
              "tags": [
                "third-party-advisory",
                "government-resource",
                "x_refsource_CIAC"
              ],
              "url": "http://www.ciac.org/ciac/bulletins/p-001.shtml"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=124900"
            },
            {
              "name": "10423",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/10423"
            },
            {
              "name": "1010306",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1010306"
            },
            {
              "name": "20040526 008: SECURITY FIX: May 26, 2004",
              "tags": [
                "vendor-advisory",
                "x_refsource_OPENBSD"
              ],
              "url": "http://www.openbsd.org/errata.html#xdm"
            },
            {
              "name": "RHSA-2004:478",
              "tags": [
                "vendor-advisory",
                "x_refsource_REDHAT"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2004-478.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2004-0419",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "XDM in XFree86 opens a chooserFd TCP socket even when DisplayManager.requestPort is 0, which could allow remote attackers to connect to the port, in violation of the intended restrictions."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "12019",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/12019"
                },
                {
                  "name": "xdm-socket-gain-access(16264)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16264"
                },
                {
                  "name": "http://bugs.xfree86.org/show_bug.cgi?id=1376",
                  "refsource": "CONFIRM",
                  "url": "http://bugs.xfree86.org/show_bug.cgi?id=1376"
                },
                {
                  "name": "MDKSA-2004:073",
                  "refsource": "MANDRAKE",
                  "url": "http://www.mandrakesecure.net/en/advisories/advisory.php?name=MDKSA-2004:073"
                },
                {
                  "name": "oval:org.mitre.oval:def:10161",
                  "refsource": "OVAL",
                  "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10161"
                },
                {
                  "name": "GLSA-200407-05",
                  "refsource": "GENTOO",
                  "url": "http://www.gentoo.org/security/en/glsa/glsa-200407-05.xml"
                },
                {
                  "name": "P-001",
                  "refsource": "CIAC",
                  "url": "http://www.ciac.org/ciac/bulletins/p-001.shtml"
                },
                {
                  "name": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=124900",
                  "refsource": "CONFIRM",
                  "url": "https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=124900"
                },
                {
                  "name": "10423",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/10423"
                },
                {
                  "name": "1010306",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1010306"
                },
                {
                  "name": "20040526 008: SECURITY FIX: May 26, 2004",
                  "refsource": "OPENBSD",
                  "url": "http://www.openbsd.org/errata.html#xdm"
                },
                {
                  "name": "RHSA-2004:478",
                  "refsource": "REDHAT",
                  "url": "http://www.redhat.com/support/errata/RHSA-2004-478.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-0419",
        "datePublished": "2004-06-03T04:00:00.000Z",
        "dateReserved": "2004-04-16T00:00:00.000Z",
        "dateUpdated": "2024-08-08T00:17:14.693Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }