CVE-2005-0605
Advisory lineage Upstream: 0 Downstream: 6
Modified
Published: 04 Mar 2005, 05:00
Last modified:07 Aug 2024, 21:21
Vulnerability Summary
Overall Risk (default)
medium
31/100 CVSS Score
7.5 HIGH
v2.0 (nvd)
EPSS Score
2.84% LOW
3% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
04 Mar 2005, 05:00
Published
Vulnerability first disclosed
07 Aug 2024, 21:21
Last Modified
Vulnerability information updated
Description
scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.
CVSS Metrics
- v2.0•HIGH•Score: 7.5AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS Trends
Current EPSS score: 2.84%• Percentile: 86%
Affected Systems
- altlinux•alt_linux
2.3
- lesstif•lesstif
0.93.94
- mandrakesoft•mandrake_linux
10.0 | 10.1 | 10.2
- mandrakesoft•mandrake_linux_corporate_server
2.1 | 3.0
- redhat•enterprise_linux
3.0 | 4.0
- redhat•enterprise_linux_desktop
3.0 | 4.0
- redhat•fedora_core
core_2.0 | core_3.0
- sgi•propack
3.0
- suse•suse_linux
6.1 | 6.1:alpha | 6.2 | 6.3 | 6.3:alpha | 6.4 | 6.4:alpha | 7.0 | 7.0:alpha | 7.1 | 7.1:alpha | 7.2 | 7.3 | 8.0 | 8.1 | 8.2 | 9.0 | 9.1 | 9.2
- xfree86_project•x11r6
3.3 | 3.3.2 | 3.3.3 | 3.3.4 | 3.3.5 | 3.3.6 | 4.0 | 4.0.1 | 4.0.2.11 | 4.0.3 | 4.1.0 | 4.1.11 | 4.1.12 | 4.2.0 | 4.2.1 | 4.3.0 | 4.3.0.1 | 4.3.0.2
- x.org•x11r6
6.7.0 | 6.8 | 6.8.1
References (27)
- http://www.redhat.com/support/errata/RHSA-2005-331.html
- http://www.redhat.com/support/errata/RHSA-2005-412.html
- http://securitytracker.com/id?1013339
- http://secunia.com/advisories/18049
- ftp://patches.sgi.com/support/free/security/advisories/20060403-01-U
- ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.5/SCOSA-2006.5.txt
- http://bugs.gentoo.org/show_bug.cgi?id=83598
- http://www.gentoo.org/security/en/glsa/glsa-200503-15.xml
- http://www.debian.org/security/2005/dsa-723
- http://secunia.com/advisories/19624
- https://bugs.freedesktop.org/attachment.cgi?id=1909
- http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html
- http://secunia.com/advisories/18316
- http://secunia.com/advisories/14460
- http://www.redhat.com/support/errata/RHSA-2005-198.html
- http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html
- http://www.redhat.com/support/errata/RHSA-2005-044.html
- http://security.gentoo.org/glsa/glsa-200503-08.xml
- http://www.securityfocus.com/bid/12714
- http://www.redhat.com/support/errata/RHSA-2008-0261.html
- http://bugs.gentoo.org/show_bug.cgi?id=83655
- http://www.redhat.com/support/errata/RHSA-2005-473.html
- http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html
- ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.57/SCOSA-2005.57.txt
- https://usn.ubuntu.com/97-1/
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10411
- https://usn.ubuntu.com/92-1/