CVE-2005-0605
published 2005-03-02CVE-2005-0605: scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.
PriorityP431high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
4.51%
90.3th percentile
scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.
Affected
49 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| altlinux | alt_linux | — | — |
| lesstif | lesstif | — | — |
| mandrakesoft | mandrake_linux | — | — |
| mandrakesoft | mandrake_linux | — | — |
| mandrakesoft | mandrake_linux | — | — |
| mandrakesoft | mandrake_linux_corporate_server | — | — |
| mandrakesoft | mandrake_linux_corporate_server | — | — |
| redhat | enterprise_linux | — | — |
| redhat | enterprise_linux | — | — |
| redhat | enterprise_linux_desktop | — | — |
| redhat | enterprise_linux_desktop | — | — |
| redhat | fedora_core | — | — |
| redhat | fedora_core | — | — |
| sgi | propack | — | — |
| suse | suse_linux | — | — |
| suse | suse_linux | — | — |
| suse | suse_linux | — | — |
| suse | suse_linux | — | — |
| suse | suse_linux | — | — |
| suse | suse_linux | — | — |
| suse | suse_linux | — | — |
| suse | suse_linux | — | — |
| suse | suse_linux | — | — |
| suse | suse_linux | — | — |
| suse | suse_linux | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-fcqj-f8qj-8gcp: scan
ghsa_unreviewed·2022-05-03
CVE-2005-0605 [HIGH] GHSA-fcqj-f8qj-8gcp: scan
scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.
Ubuntu
libxpm vulnerability
vendor_ubuntu·2005-03-16
CVE-2005-0605 libxpm vulnerability
Title: libxpm vulnerability
Summary: libxpm vulnerability
Chris Gilbert discovered a buffer overflow in the XPM library shipped
with XFree86. If an attacker tricked a user into loading a malicious
XPM image with an application that uses libxpm, he could exploit this
to execute arbitrary code with the privileges of the user opening the
image.
These overflows do not allow privilege escalation through the X
server; the overflows are in a client-side library.
Instructions: In general, a standard system update will make all the necessary changes.
Ubuntu
LessTif vulnerabilities
vendor_ubuntu·2005-03-08
CVE-2005-0605 LessTif vulnerabilities
Title: LessTif vulnerabilities
Summary: LessTif vulnerabilities
Several vulnerabilities have been found in the XPM image decoding
functions of the LessTif library. If an attacker tricked a user into
loading a malicious XPM image with an application that uses LessTif,
he could exploit this to execute arbitrary code in the context of the
user opening the image.
Ubuntu does not contain any server applications using LessTif, so
there is no possibility of privilege escalation.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
libxpm buffer overflow
vendor_redhat·2005-03-01·CVSS 7.5
CVE-2005-0605 [HIGH] libxpm buffer overflow
libxpm buffer overflow
scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.
Statement: Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2005-0605 libxpm buffer overflow
bugzilla·2008-01-28·CVSS 7.5
CVE-2005-0605 [HIGH] CVE-2005-0605 libxpm buffer overflow
CVE-2005-0605 libxpm buffer overflow
Common Vulnerabilities and Exposures assigned an identifier CVE-2005-0605 to the following vulnerability:
scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.
References:
https://bugs.freedesktop.org/attachment.cgi?id=1909
http://lists.apple.com/archives/security-announce/2005/Aug/msg00000.html
http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.html
http://www.debian.org/security/2005/dsa-723
http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html
http://security.gentoo.org/glsa/glsa-200503-08.xml
http://www.gentoo.org/security/en/glsa/glsa-200503-15.xml
http://bugs.gentoo.org/show_bug.cgi?id=83655
http://bugs.gentoo.org/show_bug.c
Bugzilla
libXpm CAN-2005-0605
bugzilla·2005-04-06
[MEDIUM] libXpm CAN-2005-0605
libXpm CAN-2005-0605
+++ This bug was initially created as a clone of Bug #152923 +++
05.10.14 CVE: CAN-2005-0665
Platform: Unix
Title: xv Remote Format String Vulnerability
Description: xv is an image manipulation utility for the X Window
System. It is vulnerable to a remote format string vulnerability due
to improper sanitization of user input and can be exploited by an
attacker to execute arbitrary code. xv versions 3.10a and earlier are
vulnerable.
Ref: http://www.securityfocus.com/advisories/8184
05.10.15 CVE: CAN-2005-0605
Platform: Unix
Title: libXpm Bitmap_unit Integer Overflow
Description: libXpm is a graphics library that is shipped with the
XOrg and XFree86 projects. libXpm is affected by an integer overflow
vulnerability. There is no known workaround at this time.
Ref: http:
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.5/SCOSA-2006.5.txtftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.57/SCOSA-2005.57.txtftp://patches.sgi.com/support/free/security/advisories/20060403-01-Uhttp://bugs.gentoo.org/show_bug.cgi?id=83598http://bugs.gentoo.org/show_bug.cgi?id=83655http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.htmlhttp://lists.apple.com/archives/security-announce/2005/Aug/msg00000.htmlhttp://secunia.com/advisories/14460http://secunia.com/advisories/18049http://secunia.com/advisories/18316http://secunia.com/advisories/19624http://security.gentoo.org/glsa/glsa-200503-08.xmlhttp://securitytracker.com/id?1013339http://www.debian.org/security/2005/dsa-723http://www.gentoo.org/security/en/glsa/glsa-200503-15.xmlhttp://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.htmlhttp://www.redhat.com/support/errata/RHSA-2005-044.htmlhttp://www.redhat.com/support/errata/RHSA-2005-198.htmlhttp://www.redhat.com/support/errata/RHSA-2005-331.htmlhttp://www.redhat.com/support/errata/RHSA-2005-412.htmlhttp://www.redhat.com/support/errata/RHSA-2005-473.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0261.htmlhttp://www.securityfocus.com/bid/12714https://bugs.freedesktop.org/attachment.cgi?id=1909https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10411https://usn.ubuntu.com/92-1/https://usn.ubuntu.com/97-1/ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2006.5/SCOSA-2006.5.txtftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.57/SCOSA-2005.57.txtftp://patches.sgi.com/support/free/security/advisories/20060403-01-Uhttp://bugs.gentoo.org/show_bug.cgi?id=83598http://bugs.gentoo.org/show_bug.cgi?id=83655http://lists.apple.com/archives/security-announce/2005//Aug/msg00001.htmlhttp://lists.apple.com/archives/security-announce/2005/Aug/msg00000.htmlhttp://secunia.com/advisories/14460http://secunia.com/advisories/18049http://secunia.com/advisories/18316http://secunia.com/advisories/19624http://security.gentoo.org/glsa/glsa-200503-08.xmlhttp://securitytracker.com/id?1013339http://www.debian.org/security/2005/dsa-723http://www.gentoo.org/security/en/glsa/glsa-200503-15.xmlhttp://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.htmlhttp://www.redhat.com/support/errata/RHSA-2005-044.htmlhttp://www.redhat.com/support/errata/RHSA-2005-198.htmlhttp://www.redhat.com/support/errata/RHSA-2005-331.htmlhttp://www.redhat.com/support/errata/RHSA-2005-412.htmlhttp://www.redhat.com/support/errata/RHSA-2005-473.htmlhttp://www.redhat.com/support/errata/RHSA-2008-0261.htmlhttp://www.securityfocus.com/bid/12714https://bugs.freedesktop.org/attachment.cgi?id=1909https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10411https://usn.ubuntu.com/92-1/https://usn.ubuntu.com/97-1/
2005-03-02
Published