CVE-2005-3964
Advisory lineage Upstream: 0 Downstream: 3
Downstream
Modified
Published: 02 Dec 2005, 11:00
Last modified:07 Aug 2024, 23:31
Vulnerability Summary
Overall Risk (default)
medium
30/100 CVSS Score
7.5 HIGH
v2.0 (nvd)
EPSS Score
1.19% LOW
1% probability 0.00%
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
02 Dec 2005, 11:00
Published
Vulnerability first disclosed
07 Aug 2024, 23:31
Last Modified
Vulnerability information updated
Description
Multiple buffer overflows in libUil (libUil.so) in OpenMotif 2.2.3, and possibly other versions, allows attackers to execute arbitrary code via the (1) diag_issue_diagnostic function in UilDiags.c and (2) open_source_file function in UilSrcSrc.c.
CVSS Metrics
- v2.0•HIGH•Score: 7.5AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS Trends
Current EPSS score: 1.19%• Percentile: 79%
Affected Systems
- integrated_computer_solutions•openmotif
2.2.3
References (11)
- http://www.redhat.com/support/errata/RHSA-2006-0272.html
- http://www.securityfocus.com/archive/1/418459/100/0/threaded
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9393
- http://securitytracker.com/id?1015303
- http://marc.info/?l=full-disclosure&m=113349242925897&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23389
- http://www.vupen.com/english/advisories/2005/2709
- https://exchange.xforce.ibmcloud.com/vulnerabilities/23388
- http://www.redhat.com/support/errata/RHSA-2008-0261.html
- http://www.securityfocus.com/bid/15686
- http://www.securityfocus.com/bid/15684