Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3178

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2005-3178
Last Modified 21 Aug 2010 12:33:16
Published 07 Oct 2005 02:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2005-3178

Summary

Buffer overflow in xloadimage 4.1 and earlier, and xli, might allow user-assisted attackers to execute arbitrary code via a long title name in a NIFF file, which triggers the overflow during (1) zoom, (2) reduce, or (3) rotate operations.

Vulnerable Systems

Application

  • Xli

  • Xloadimage 4.1


References

DEBIAN - DSA-859

DEBIAN - DSA-858

BID - 15051

REDHAT - RHSA-2005:802

SUSE - SUSE-SR:2005:024

MANDRIVA - MDKSA-2005:192

GENTOO - GLSA-200510-26

CONFIRM - http://support.avaya.com/elmodocs2/security/ASA-2006-013.htm

SECTRACK - 1015072

SECUNIA - 18491

SECUNIA - 18170

SECUNIA - 18050

SECUNIA - 17369

SECUNIA - 17282

SECUNIA - 17273

SECUNIA - 17206

SECUNIA - 17143

SECUNIA - 17140

SECUNIA - 17139

SECUNIA - 17124

SECUNIA - 17087

BUGTRAQ - 20051005 xloadimage buffer overflow.

SCO - SCOSA-2005.56

SCO - SCOSA-2005.62

FEDORA - FLSA-2006:152923


Last Updated: 27 May 2016 10:40:50