Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0168

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0168
Last Modified 10 Sep 2008 08:00:37
Published 22 Apr 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0168

Summary

Vulnerability in Imlib before 1.9.13 allows attackers to cause a denial of service (crash) and possibly execute arbitrary code by manipulating arguments that are passed to malloc, which results in a heap corruption.

Vulnerable Systems

Application

  • Enlightenment Imlib 1.9

  • Enlightenment Imlib 1.9.1

  • Enlightenment Imlib 1.9.10

  • Enlightenment Imlib 1.9.11

  • Enlightenment Imlib 1.9.12

  • Enlightenment Imlib 1.9.2

  • Enlightenment Imlib 1.9.3

  • Enlightenment Imlib 1.9.4

  • Enlightenment Imlib 1.9.5

  • Enlightenment Imlib 1.9.6

  • Enlightenment Imlib 1.9.7

  • Enlightenment Imlib 1.9.8

  • Enlightenment Imlib 1.9.9


References

REDHAT - RHSA-2002:048

BID - 4336

SUSE - SuSE-SA:2002:015

MANDRAKE - MDKSA-2002:029

CONECTIVA - CLA-2002:470

CALDERA - CSSA-2002-019.0


Last Updated: 27 May 2016 10:36:48