← Back

CVE-2004-0914

nvd nist
Published: Jan 10, 2005Modified: Apr 16, 2026

JSON object

Loading...
10.0
Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 10.0 / Impact: 10.0
Source: NVD

Description

Multiple vulnerabilities in libXpm for 6.8.1 and earlier, as used in XFree86 and other packages, include (1) multiple integer overflows, (2) out-of-bounds memory accesses, (3) directory traversal, (4) shell metacharacter, (5) endless loops, and (6) memory leaks, which could allow remote attackers to obtain sensitive information, cause a denial of service (application crash), or execute arbitrary code via a certain XPM image file. NOTE: it is highly likely that this candidate will be SPLIT into other candidates in the future, per CVE's content decisions.

Affected (40)

Products: Lesstif: Lesstif · X.org: X11r6 · Xfree86 Project: X11r6 · +3 more
Show all products
Lesstif: Lesstif · X.org: X11r6 · Xfree86 Project: X11r6 · Gentoo: Linux · Redhat: Fedora Core · Suse: Suse Linux
Lesstif
1 product
Lesstif
X.org
1 product
X11r6
Xfree86 Project
1 product
X11r6
Gentoo
1 product
Linux
Redhat
1 product
Fedora Core
Suse
1 product
Suse Linux
Configuration A
29 vulnerable
Vulnerable SoftwareAffected Versions
Lesstif
Lesstif
Version 0.93.12
Lesstif
Version 0.93.18
Lesstif
Version 0.93.34
Lesstif
Version 0.93.36
Lesstif
Version 0.93.40
Lesstif
Version 0.93.91
Lesstif
Version 0.93.94
Lesstif
Version 0.93.96
Lesstif
Version 0.93
X.org
X11r6
Version 6.7.0
X11r6
Version 6.8.1
X11r6
Version 6.8
Xfree86 Project
X11r6
Version 3.3.2
X11r6
Version 3.3.3
X11r6
Version 3.3.4
X11r6
Version 3.3.5
X11r6
Version 3.3.6
X11r6
Version 3.3
X11r6
Version 4.0.1
X11r6
Version 4.0.2.11
X11r6
Version 4.0.3
X11r6
Version 4.0
X11r6
Version 4.1.0
X11r6
Version 4.1.11
X11r6
Version 4.1.12
X11r6
Version 4.2.0
X11r6
Version 4.2.1
X11r6
Version 4.2.1
X11r6
Version 4.3.0
Configuration B
11 vulnerable
Vulnerable SoftwareAffected Versions
Linux
All versions
Redhat
Fedora Core
Version core_2.0
Fedora Core
Version core_3.0
Suse
Suse Linux
Version 1.0
Suse Linux
Version 8.1
Suse Linux
Version 8.2
Suse Linux
Version 8
Suse Linux
Version 9.0
Suse Linux
Version 9.0
Suse Linux
Version 9.1
Suse Linux
Version 9.2

References (44)

Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.