CVE-2005-0639

critical

Description

Multiple vulnerabilities in xli before 1.17 may allow remote attackers to execute arbitrary code via "buffer management errors" from certain image properties, some of which may be related to integer overflows in PPM files.

References

http://www.debian.org/security/2005/dsa-695

http://security.gentoo.org/glsa/glsa-200503-05.xml

http://secunia.com/advisories/14459

http://bugs.gentoo.org/show_bug.cgi?id=79762

Details

Source: Mitre, NVD

Published: 2005-03-02

Updated: 2008-09-05

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical