[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

95906

 
 

909

 
 

77986

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2005-2976

Date: (C)2005-11-18   (M)2017-10-12
 
CVSS Score: 7.5Access Vector: NETWORK
Exploitability Subscore: 10.0Access Complexity: LOW
Impact Subscore: 6.4Authentication: NONE
 Confidentiality: PARTIAL
 Integrity: PARTIAL
 Availability: PARTIAL











Integer overflow in io-xpm.c in gdk-pixbuf 0.22.0 in GTK+ before 2.8.7 allows attackers to cause a denial of service (crash) or execute arbitrary code via an XPM file with large height, width, and colour values, a different vulnerability than CVE-2005-3186.

Reference:
SECTRACK-1015216
BID-15428
SECUNIA-17522
SECUNIA-17538
SECUNIA-17562
SECUNIA-17592
SECUNIA-17594
SECUNIA-17615
SECUNIA-17657
SECUNIA-17710
SECUNIA-17770
SECUNIA-17791
ADV-2005-2433
DSA-911
DSA-913
FLSA:173274
GLSA-200511-14
MDKSA-2005:214
RHSA-2005:810
SUSE-SA:2005:065
USN-216-1
http://support.avaya.com/elmodocs2/security/ASA-2005-229.pdf

CWE    1
CWE-189

© 2013 SecPod Technologies