CVE-2005-1046

Severity Score

7.5

*CVSS v2

*EPSS

*CPE

*Multiple Sources

*KEV

*SSVC

Buffer overflow in the kimgio library for KDE 3.4.0 allows remote attackers to execute arbitrary code via a crafted PCX image file.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

URL	Tag	Source
http://secunia.com/advisories/28114	Third Party Advisory
http://www.kde.org/info/security/advisory-20050421-1.txt	X_refsource_confirm
http://www.securityfocus.com/bid/13096	Vdb Entry
http://www.vupen.com/english/advisories/2005/0331	Vdb Entry
http://www.vupen.com/english/advisories/2007/4241	Vdb Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11081	Signature
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5802	Signature

URL	Date	SRC

URL	Date	SRC
http://secunia.com/advisories/14908	2018-10-19
http://www.debian.org/security/2005/dsa-714	2018-10-19
http://www.novell.com/linux/security/advisories/2005_22_kdelibs3.html	2018-10-19

URL	Date	SRC
http://bugs.kde.org/show_bug.cgi?id=102328	2018-10-19
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103170-1	2018-10-19
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201320-1	2018-10-19
http://www.redhat.com/support/errata/RHSA-2005-393.html	2018-10-19
http://www.securityfocus.com/archive/1/427976/100/0/threaded	2018-10-19
https://access.redhat.com/security/cve/CVE-2005-1046	2005-05-17
https://bugzilla.redhat.com/show_bug.cgi?id=1617602	2005-05-17

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Kde Search vendor "Kde"		Kde Search vendor "Kde" for product "Kde"				3.4.0 Search vendor "Kde" for product "Kde" and version "3.4.0"		-		Affected