Lucene search

MitreCVE-2004-1095

HistoryJan 10, 2005 - 5:00 a.m.

CVE-2004-1095

2005-01-1005:00:00

mitre

web.nvd.nist.gov

cve

2004

1095

integer overflow

code execution

image reader

buffer overflow

security vulnerability

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.5

Confidence

Low

EPSS

0.12

Percentile

95.4%

JSON

Multiple integer overflows in (1) readbmp.c, (2) readgif.c, (3) readgif.c, (4) readmrf.c, (5) readpcx.c, (6) readpng.c,(7) readpnm.c, (8) readprf.c, (9) readtiff.c, (10) readxbm.c, (11) readxpm.c in zgv 5.8 allow remote attackers to execute arbitrary code via certain image headers that cause calculations to be overflowed and small buffers to be allocated, leading to buffer overflows. NOTE: CVE-2004-0994 and CVE-2004-1095 identify sets of bugs that only partially overlap, despite having the same developer. Therefore, they should be regarded as distinct.

Affected configurations

Nvd

Node

zgvxzgv_image_viewerMatch0.6

zgvxzgv_image_viewerMatch0.7

zgvxzgv_image_viewerMatch0.8

zgvzgv_image_viewerMatch5.5

zgvzgv_image_viewerMatch5.6

zgvzgv_image_viewerMatch5.7

zgvzgv_image_viewerMatch5.8

Node

debiandebian_linuxMatch3.0alpha

debiandebian_linuxMatch3.0arm

debiandebian_linuxMatch3.0hppa

debiandebian_linuxMatch3.0ia-32

debiandebian_linuxMatch3.0ia-64

debiandebian_linuxMatch3.0m68k

debiandebian_linuxMatch3.0mips

debiandebian_linuxMatch3.0mipsel

debiandebian_linuxMatch3.0ppc

debiandebian_linuxMatch3.0s-390

debiandebian_linuxMatch3.0sparc

VendorProductVersionCPE
zgvxzgv_image_viewer0.6cpe:2.3:a:zgv:xzgv_image_viewer:0.6:*:*:*:*:*:*:*
zgvxzgv_image_viewer0.7cpe:2.3:a:zgv:xzgv_image_viewer:0.7:*:*:*:*:*:*:*
zgvxzgv_image_viewer0.8cpe:2.3:a:zgv:xzgv_image_viewer:0.8:*:*:*:*:*:*:*
zgvzgv_image_viewer5.5cpe:2.3:a:zgv:zgv_image_viewer:5.5:*:*:*:*:*:*:*
zgvzgv_image_viewer5.6cpe:2.3:a:zgv:zgv_image_viewer:5.6:*:*:*:*:*:*:*
zgvzgv_image_viewer5.7cpe:2.3:a:zgv:zgv_image_viewer:5.7:*:*:*:*:*:*:*
zgvzgv_image_viewer5.8cpe:2.3:a:zgv:zgv_image_viewer:5.8:*:*:*:*:*:*:*
debiandebian_linux3.0cpe:2.3:o:debian:debian_linux:3.0:*:alpha:*:*:*:*:*
debiandebian_linux3.0cpe:2.3:o:debian:debian_linux:3.0:*:arm:*:*:*:*:*
debiandebian_linux3.0cpe:2.3:o:debian:debian_linux:3.0:*:hppa:*:*:*:*:*

Vendor	Product	Version	CPE
zgv	xzgv_image_viewer	0.6	cpe:2.3:a:zgv:xzgv_image_viewer:0.6:::::::*
zgv	xzgv_image_viewer	0.7	cpe:2.3:a:zgv:xzgv_image_viewer:0.7:::::::*
zgv	xzgv_image_viewer	0.8	cpe:2.3:a:zgv:xzgv_image_viewer:0.8:::::::*
zgv	zgv_image_viewer	5.5	cpe:2.3:a:zgv:zgv_image_viewer:5.5:::::::*
zgv	zgv_image_viewer	5.6	cpe:2.3:a:zgv:zgv_image_viewer:5.6:::::::*
zgv	zgv_image_viewer	5.7	cpe:2.3:a:zgv:zgv_image_viewer:5.7:::::::*
zgv	zgv_image_viewer	5.8	cpe:2.3:a:zgv:zgv_image_viewer:5.8:::::::*
debian	debian_linux	3.0	cpe:2.3:o:debian:debian_linux:3.0::alpha:::::
debian	debian_linux	3.0	cpe:2.3:o:debian:debian_linux:3.0::arm:::::
debian	debian_linux	3.0	cpe:2.3:o:debian:debian_linux:3.0::hppa:::::