Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1726

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-1726
Last Modified 05 Sep 2008 04:42:10
Published 20 Aug 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-1726

Summary

Multiple integer overflows in (1) xviris.c, (2) xvpcx.c, and (3) xvpm.c in XV allow remote attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow.

Vulnerable Systems

Application

  • John Bradley Xv 3.10a


References

BID - 10985

XF - xv-image-bo(17053)

BUGTRAQ - 20040820 XV multiple buffer overflows, exploit included


Last Updated: 27 May 2016 10:39:09