← Back

CVE-2004-2714

nvd nist
Published: Dec 31, 2004Modified: Apr 16, 2026

JSON object

Loading...
6.0
Vector
AV:N/AC:M/Au:S/C:P/I:P/A:P
Exploitability: 6.8 / Impact: 6.4
Source: NVD

Description

Unspecified vulnerability in Window Maker 0.80.2 and earlier allows attackers to perform unknown actions via format string specifiers in a font specification in WMGLOBAL, probably a format string vulnerability.

Affected (16)

Windowmaker
1 product
Windowmaker
Configuration A
16 vulnerable
Vulnerable SoftwareAffected Versions
Windowmaker
Windowmaker
Version 0.20.1.3
Windowmaker
Version 0.52.2
Windowmaker
Version 0.53
Windowmaker
Version 0.60.0
Windowmaker
Version 0.60
Windowmaker
Version 0.61.1
Windowmaker
Version 0.61
Windowmaker
Version 0.62.1
Windowmaker
Version 0.62
Windowmaker
Version 0.63.1
Windowmaker
Version 0.63
Windowmaker
Version 0.64
Windowmaker
Version 0.65.1
Windowmaker
Version 0.65
Windowmaker
Version 0.80.2
Windowmaker
Version 0.80

Related CWEs

CWE-134
Use of Externally-Controlled Format String
The product uses a function that accepts a format string as an argument, but the format string originates from an external source.

References (12)

Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Patch
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Patch
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.