Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2096

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-2096
Last Modified 30 Oct 2012 09:48:03
Published 06 Jul 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2096

Summary

zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as demonstrated using a crafted PNG file.

Vulnerable Systems

Application

  • Gnu Zlib 1.2.0

  • Gnu Zlib 1.2.1

  • Gnu Zlib 1.2.2


References

CERT-VN - VU#680620

BID - 14162

REDHAT - RHSA-2005:569

GENTOO - GLSA-200509-18

DEBIAN - DSA-797

DEBIAN - DSA-740

SUNALERT - 101989

GENTOO - GLSA-200507-05

SECUNIA - 15949

FEDORA - FLSA:162680

MISC - https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=162391

VUPEN - ADV-2007-1267

VUPEN - ADV-2006-0144

VUPEN - ADV-2005-0978

UBUNTU - USN-148-1

HP - HPSBUX02090

REDHAT - RHSA-2008:0629

CONFIRM - http://support.apple.com/kb/HT3298

SECTRACK - 1014398

SECUNIA - 31492

APPLE - APPLE-SA-2005-08-15

APPLE - APPLE-SA-2005-08-17

APPLE - APPLE-SA-2008-11-13

FREEBSD - FreeBSD-SA-05:16.zlib

XF - hpux-secure-shell-dos(24064)

CONFIRM - http://www.vmware.com/support/vi3/doc/esx-9916286-patch.html

CONFIRM - http://www.vmware.com/support/vi3/doc/esx-3616065-patch.html

UBUNTU - USN-151-3

BUGTRAQ - 20071029 Windows binary of "Virtual Floppy Drive 2.1" contains vulnerable zlib (CAN-2005-2096)

BUGTRAQ - 20071029 Re: Windows binary of "GSview 4.8" contain vulnerable zlib (CAN-2005-2096)

BUGTRAQ - 20071021 Re: Windows binary of "GSview 4.8" contain vulnerable zlib (CAN-2005-2096)

BUGTRAQ - 20071020 Re: Windows binary of "GSview 4.8" contain vulnerable zlib (CAN-2005-2096)

BUGTRAQ - 20071018 Official Windows binaries of "curl" contain vulnerable zlib 1.2.2 (CAN-2005-2096)

BUGTRAQ - 20071018 Windows binary of "GSview 4.8" contain vulnerable zlib (CAN-2005-2096)

BUGTRAQ - 20070404 VMSA-2007-0003 VMware ESX 3.0.1 and 3.0.0 server security updates

MANDRIVA - MDKSA-2006:070

MANDRIVA - MDKSA-2005:196

MANDRAKE - MDKSA-2005:112

DEBIAN - DSA-1026

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-016.htm

SECUNIA - 24788

SECUNIA - 19597

SECUNIA - 19550

SECUNIA - 18507

SECUNIA - 18406

SECUNIA - 18377

SECUNIA - 17516

SECUNIA - 17326

SECUNIA - 17236

SECUNIA - 17225

SECUNIA - 17054

SCO - SCOSA-2006.6

SECUNIA - 32706

HP - SSRT051058


Last Updated: 27 May 2016 10:49:48