Published: 10/01/2005 Updated: 11/10/2017

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 890

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Multiple integer overflows in the image handler for imlib 1.9.14 and previous versions, which is used by gkrellm and several window managers, allow remote malicious users to cause a denial of service (application crash) and execute arbitrary code via certain image files.

Vulnerable Product	Search on Vulmon	Subscribe to Product
enlightenment imlib 1.9.13
enlightenment imlib 1.9.14
redhat linux 9.0
redhat linux 7.3
gentoo linux

Synopsis imlib security update Type/Severity Security Advisory: Moderate Topic Updated imlib packages that fix several integer and buffer overflows arenow available[Updated Dec 22, 2004]Added multilib packages to the Itanium, PPC, AMD64/Intel EM64T, and IBMeServer zSeries architectures for Red Hat Enterpri ...

Recently, Pavel Kankovsky discovered several buffer overflows in imlib which were fixed in USN-53-1 It was found that imlib2 was vulnerable to similar issues ...

Pavel Kankovsky discovered several buffer overflows in imlib If an attacker tricked a user into loading a malicious image, he could exploit this to execute arbitrary code in the context of the user opening the image ...

NVD-CWE-Other http://www.securityfocus.com/bid/11830 http://www.redhat.com/support/errata/RHSA-2004-651.html http://www.debian.org/security/2005/dsa-628 http://www.gentoo.org/security/en/glsa/glsa-200412-03.xml http://www.mandriva.com/security/advisories?name=MDKSA-2005:007 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10771 https://access.redhat.com/errata/RHSA-2004:651 https://usn.ubuntu.com/55-1/https://nvd.nist.gov

CVE-2004-1026

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect