Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2978

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-2978
Last Modified 07 Mar 2011 09:25:23
Published 18 Oct 2005 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2978

Summary

pnmtopng in netpbm before 10.25, when using the -trans option, uses uninitialized size and index variables when converting Portable Anymap (PNM) images to Portable Network Graphics (PNG), which might allow attackers to execute arbitrary code by modifying the stack.

Vulnerable Systems

Application

  • Netpbm 10.0

  • Netpbm 10.1

  • Netpbm 10.10

  • Netpbm 10.11

  • Netpbm 10.12

  • Netpbm 10.13

  • Netpbm 10.14

  • Netpbm 10.15

  • Netpbm 10.16

  • Netpbm 10.17

  • Netpbm 10.18

  • Netpbm 10.19

  • Netpbm 10.2

  • Netpbm 10.20

  • Netpbm 10.21

  • Netpbm 10.22

  • Netpbm 10.23

  • Netpbm 10.24

  • Netpbm 10.3

  • Netpbm 10.4

  • Netpbm 10.5

  • Netpbm 10.6

  • Netpbm 10.7

  • Netpbm 10.8

  • Netpbm 10.9


References

MISC - https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=168278

VUPEN - ADV-2005-2133

REDHAT - RHSA-2005:793

UBUNTU - USN-210-1

BID - 15128

SUSE - SUSE-SR:2005:024

GENTOO - GLSA-200510-18

DEBIAN - DSA-878

SECTRACK - 1015071

SECUNIA - 17357

SECUNIA - 17282

SECUNIA - 17265

SECUNIA - 17256

SECUNIA - 17222

SECUNIA - 17221


Last Updated: 27 May 2016 10:40:42