2 results (0.005 seconds)

CVSS: 6.0EPSS: 0%CPEs: 16EXPL: 0

Unspecified vulnerability in Window Maker 0.80.2 and earlier allows attackers to perform unknown actions via format string specifiers in a font specification in WMGLOBAL, probably a format string vulnerability. • http://secunia.com/advisories/12961 http://securitytracker.com/id?1011918 http://www.osvdb.org/11108 http://www.securityfocus.com/bid/11512 http://www.windowmaker.org/src/ChangeLog https://exchange.xforce.ibmcloud.com/vulnerabilities/17845 • CWE-134: Use of Externally-Controlled Format String •

CVSS: 7.5EPSS: 9%CPEs: 12EXPL: 0

Buffer overflow in Window Maker (wmaker) 0.80.0 and earlier may allow remote attackers to execute arbitrary code via a certain image file that is not properly handled when Window Maker uses width and height information to allocate a buffer. Desbordamiento de búfer en Window Maker (wmaker) 0.80.0 y anteriores puede permitir a atacantes remotos ejecutar código arbitrario mediante una cierta fichero de imagen que no es manejado adecuadamente cuando Window Maker usa información de ancho y alto para asignar un búfer. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000548 http://www.debian.org/security/2002/dsa-190 http://www.iss.net/security_center/static/10560.php http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-085.php http://www.redhat.com/support/errata/RHSA-2003-009.html http://www.redhat.com/support/errata/RHSA-2003-043.html http://www.securityfocus.com/bid/6119 https://access.redhat.com/security/cve/CVE-2002-1277 https://bugzilla.redhat.com/show_bug •