Lucene search
MitreCVE-2004-1726HistoryFeb 26, 2005 - 5:00 a.m.
CVE-2004-1726
2005-02-2605:00:00
mitre
web.nvd.nist.gov
23
cve-2004-1726
xv
integer overflow
remote code execution
image file
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.7
Confidence
High
EPSS
0.026
Percentile
90.5%
Multiple integer overflows in (1) xviris.c, (2) xvpcx.c, and (3) xvpm.c in XV allow remote attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow.
Affected configurations
Node
john_bradleyxvMatch3.10a
| Vendor | Product | Version | CPE |
|---|---|---|---|
| john_bradley | xv | 3.10a | cpe:2.3:a:john_bradley:xv:3.10a:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2004-1726
2004-08-20 04:00:00
cvelist
cvelist
CVE-2004-1726
2005-02-26 05:00:00
openvas
openvas
FreeBSD Ports: xv, xv-m17n
2008-09-04 00:00:00
FreeBSD Ports: xv, xv-m17n
2008-09-04 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.7
Confidence
High
EPSS
0.026
Percentile
90.5%
Related for CVE-2004-1726