Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2966

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2005-2966
Last Modified 16 Jun 2011 12:00:00
Published 05 Oct 2005 05:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2005-2966

Summary

The Python SVG import plugin (diasvg_import.py) for DIA 0.94 and earlier allows user-assisted attackers to execute arbitrary commands via a crafted SVG file.

Vulnerable Systems

Application

  • Dia 0.91

  • Dia 0.92.2

  • Dia 0.93

  • Dia 0.94


References

VUPEN - ADV-2005-1950

UBUNTU - USN-193-1

BID - 15000

SUSE - SUSE-SR:2005:022

MANDRIVA - MDKSA-2005:187

GENTOO - GLSA-200510-06

DEBIAN - DSA-1025

DEBIAN - DSA-847

SECUNIA - 17108

SECUNIA - 17095

SECUNIA - 17083

SECUNIA - 17059

SECUNIA - 17047


Last Updated: 27 May 2016 10:40:42