Lucene search

[email protected]CVE-2004-0691

HistorySep 28, 2004 - 4:00 a.m.

CVE-2004-0691

2004-09-2804:00:00

[email protected]

web.nvd.nist.gov

security

vulnerability

buffer overflow

bmp

denial of service

remote code execution

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.335 Low

EPSS

Percentile

97.1%

JSON

Heap-based buffer overflow in the BMP image format parser for the QT library (qt3) before 3.3.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code.

Affected configurations

NVD

Node

trolltechqtRange≤3.3.3

CPENameOperatorVersion
trolltech:qttrolltech qtle3.3.3

CPE	Name	Operator	Version
trolltech:qt	trolltech qt	le	3.3.3

References

marc.info/?l=bugtraq&m=109295309008309&w=2

security.gentoo.org/glsa/glsa-200408-20.xml

sunsolve.sun.com/search/document.do?assetkey=1-66-201610-1

www.debian.org/security/2004/dsa-542

www.mandriva.com/security/advisories?name=MDKSA-2004:085

www.novell.com/linux/security/advisories/2004_27_qt3.html

www.redhat.com/support/errata/RHSA-2004-414.html

exchange.xforce.ibmcloud.com/vulnerabilities/17040

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9485

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.5 High

AI Score

Confidence

Low

0.335 Low

EPSS

Percentile

97.1%

JSON

Related for CVE-2004-0691

ubuntucve1 securityvulns1 nvd1 cvelist1 openvas10 slackware1 gentoo1 nessus15 redhat3 osv1 freebsd1 suse2 debian2