Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2005-0639HistoryMar 04, 2005 - 5:00 a.m.
CVE-2005-0639
2005-03-0405:00:00
Debian Security Bug Tracker
security-tracker.debian.org
17
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.019
Percentile
88.4%
Multiple vulnerabilities in xli before 1.17 may allow remote attackers to execute arbitrary code via “buffer management errors” from certain image properties, some of which may be related to integer overflows in PPM files.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | xli | < 1.17.0-17 | xli_1.17.0-17_all.deb |
| Debian | 11 | all | xli | < 1.17.0-17 | xli_1.17.0-17_all.deb |
| Debian | 999 | all | xli | < 1.17.0-17 | xli_1.17.0-17_all.deb |
| Debian | 13 | all | xli | < 1.17.0-17 | xli_1.17.0-17_all.deb |
| Debian | 12 | all | xloadimage | < 4.1-14.2 | xloadimage_4.1-14.2_all.deb |
| Debian | 11 | all | xloadimage | < 4.1-14.2 | xloadimage_4.1-14.2_all.deb |
| Debian | 999 | all | xloadimage | < 4.1-14.2 | xloadimage_4.1-14.2_all.deb |
| Debian | 13 | all | xloadimage | < 4.1-14.2 | xloadimage_4.1-14.2_all.deb |
Related
nvd
nvd
CVE-2005-0639
2005-03-02 05:00:00
cvelist
cvelist
CVE-2005-0639
2005-03-04 05:00:00
openvas
openvas
FreeBSD Ports: xli
2008-09-04 00:00:00
FreeBSD Ports: xli
2008-09-04 00:00:00
Debian: Security Advisory (DSA-694-1)
2008-01-17 00:00:00
nessus
nessus
freebsd
freebsd
xli -- integer overflows in image size calculations
2005-02-08 00:00:00
cve
cve
CVE-2005-0639
2005-03-04 05:00:00
ubuntucve
ubuntucve
CVE-2005-0639
2005-03-02 00:00:00
debian
debian
[SECURITY] [DSA 694-1] New xloadimage packages fix several vulnerabilities
2005-03-21 10:14:23
[SECURITY] [DSA 695-1] New xli packages fix several vulnerabilities
2005-03-21 14:09:27
[SECURITY] [DSA 694-1] New xloadimage packages fix several vulnerabilities
2005-03-21 10:14:23
osv
osv
xloadimage - missing input sanitising, integer overflow
2005-03-21 00:00:00
xli - buffer overflow, input sanitising, integer overflow
2005-03-21 00:00:00
gentoo
gentoo
xli, xloadimage: Multiple vulnerabilities
2005-03-02 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 695-1] New xli packages fix several vulnerabilities
2005-03-22 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.019
Percentile
88.4%
Related for DEBIANCVE:CVE-2005-0639