English | Deutsch | Español | Português
 UserID:
 Passwd:
new user
 About:   Dedicated  | Advanced  | Standard  | Recurring  | No Risk  | Desktop  | Basic  | Single  | Security Seal  | FAQ
  Price/Feature Summary  | Order  | New Vulnerabilities  | Confidentiality  | Vulnerability Search
 Vulnerability   
Search   
    Search 75516 CVE descriptions
and 39786 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2004-0688
Description:Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) ParsePixels, and (5) ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to execute arbitrary code via a malformed XPM image file.
Test IDs: 1.3.6.1.4.1.25623.1.0.55156   1.3.6.1.4.1.25623.1.0.52386  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2004-0688
Bugtraq: 20040915 CESA-2004-004: libXpm (Google Search)
http://marc.theaimsgroup.com/?l=bugtraq&m=109530851323415&w=2
http://scary.beasts.org/security/CESA-2004-003.txt
http://lists.apple.com/archives/security-announce/2005/May/msg00001.html
Conectiva Linux advisory: CLA-2005:924
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000924
Debian Security Information: DSA-560 (Google Search)
http://www.debian.org/security/2004/dsa-560
http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html
http://www.gentoo.org/security/en/glsa/glsa-200409-34.xml
http://www.gentoo.org/security/en/glsa/glsa-200502-07.xml
HPdes Security Advisory: HPSBUX02119
http://www.securityfocus.com/archive/1/archive/1/434715/100/0/threaded
HPdes Security Advisory: SSRT4848
http://www.securityfocus.com/archive/1/archive/1/434715/100/0/threaded
http://www.mandriva.com/security/advisories?name=MDKSA-2004:098
RedHat Security Advisories: RHSA-2004:537
http://www.redhat.com/support/errata/RHSA-2004-537.html
RedHat Security Advisories: RHSA-2005:004
http://www.redhat.com/support/errata/RHSA-2005-004.html
http://sunsolve.sun.com/search/document.do?assetkey=1-26-57653-1
SuSE Security Announcement: SUSE-SA:2004:034 (Google Search)
http://www.novell.com/linux/security/advisories/2004_34_xfree86_libs_xshared.html
http://www.ubuntulinux.org/support/documentation/usn/usn-27-1
Cert/CC Advisory: TA05-136A
http://www.us-cert.gov/cas/techalerts/TA05-136A.html
CERT/CC vulnerability note: VU#537878
http://www.kb.cert.org/vuls/id/537878
BugTraq ID: 11196
http://www.securityfocus.com/bid/11196
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:11796
http://www.vupen.com/english/advisories/2006/1914
http://secunia.com/advisories/20235
XForce ISS Database: libxpm-xpmfile-integer-overflow(17416)
http://xforce.iss.net/xforce/xfdb/17416

New User Registration
Email:
UserID:
Passwd:
Please email me your monthly newsletters, informing the latest services, improvements & surveys.
Please email me a vulnerability test announcement whenever a new test is added.
   Privacy
Registered User Login
 
UserID:   
Passwd:  

 Forgot userid or passwd?
Email/Userid:




Home | About Us | Contact Us | Partner Programs | Privacy | Mailing Lists | Abuse
Security Audits | Managed DNS | Network Monitoring | Site Analyzer | Internet Research Reports
Web Probe | Whois

© 1998-2014 E-Soft Inc. All rights reserved.