2 results (0.013 seconds)

CVSS: 5.1EPSS: 2%CPEs: 2EXPL: 0

Buffer overflow in xloadimage 4.1 and earlier, and xli, might allow user-assisted attackers to execute arbitrary code via a long title name in a NIFF file, which triggers the overflow during (1) zoom, (2) reduce, or (3) rotate operations. • ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.62/SCOSA-2005.62.txt ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.56/SCOSA-2005.56.txt http://marc.info/?l=bugtraq&m=112862493918840&w=2 http://secunia.com/advisories/17087 http://secunia.com/advisories/17124 http://secunia.com/advisories/17139 http://secunia.com/advisories/17140 http://secunia.com/advisories/17143 http://secunia.com/advisories/17206 http://secunia.com/advisories/17273 http://secunia.com& •

CVSS: 7.5EPSS: 27%CPEs: 3EXPL: 3

Buffer overflow in xloadimage 4.1 (aka xli 1.16 and 1.17) in Linux allows remote attackers to execute arbitrary code via a FACES format image containing a long (1) Firstname or (2) Lastname field. • https://www.exploit-db.com/exploits/20998 http://www.debian.org/security/2001/dsa-069 http://www.debian.org/security/2005/dsa-695 http://www.gentoo.org/security/en/glsa/glsa-200503-05.xml http://www.iss.net/security_center/static/6821.php http://www.novell.com/linux/security/advisories/2001_024_xli_txt.html http://www.redhat.com/support/errata/RHSA-2001-088.html http://www.securityfocus.com/archive/1/195823 http://www.securityfocus.com/bid/3006 https:// • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •