CVE-2005-0605 — Vulnetix

CVE-2005-0605 PUBLISHED CVSS 7.5 HIGH

scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.

EPSS 2.84% · 86.5th percentile

Risk Scores

CVSS 2.0

7.5

EPSS Score

2.84%

86.5th percentile

Affected Products

Vendor	Product	Versions
xfree86_project	x11r6	4.0.2.11, 3.3.5, 3.3.6
redhat	enterprise_linux	4.0, 3.0, 3.0
redhat	fedora_core	core_2.0, core_3.0
sgi	propack	3.0
n/a	n/a	n/a
mandrakesoft	mandrake_linux_corporate_server	3.0, 2.1, 3.0
suse	suse_linux	6.2, 8.0, 8.1
lesstif	lesstif	0.93.94
mandrakesoft	mandrake_linux	10.1, 10.0, 10.2
x.org	x11r6	6.8, 6.7.0, 6.8.1
altlinux	alt_linux	2.3, 2.3
redhat	enterprise_linux_desktop	3.0, 4.0

Exploit Intelligence

RHSA-2005:331 (circl)
RHSA-2005:412 (circl)
1013339 (circl)
18049 (circl)
20060403-01-U (circl)
SCOSA-2006.5 (circl)
http://bugs.gentoo.org/show_bug.cgi?id=83598 (circl)
GLSA-200503-15 (circl)
DSA-723 (circl)
19624 (circl)

…and 17 more exploits

Timeline

Mar 2, 2005 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Jul 12, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 9, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 3, 2023 EPSS Score
May 25, 2023 EPSS Score
Jul 17, 2023 EPSS Score

References

http://secunia.com/advisories/18316 url
RHSA-2005:331 vendor-advisory
RHSA-2005:412 vendor-advisory
1013339 vdb
18049 third-party-advisory
20060403-01-U vendor-advisory
SCOSA-2006.5 vendor-advisory
http://bugs.gentoo.org/show_bug.cgi?id=83598 url
GLSA-200503-15 vendor-advisory
DSA-723 vendor-advisory
19624 third-party-advisory
https://bugs.freedesktop.org/attachment.cgi?id=1909 url
APPLE-SA-2005-08-15 vendor-advisory
14460 third-party-advisory
RHSA-2005:198 vendor-advisory
FLSA-2006:152803 vendor-advisory
RHSA-2005:044 vendor-advisory
GLSA-200503-08 vendor-advisory
12714 vdb
RHSA-2008:0261 vendor-advisory

…and 10 more

Open in Interactive Console →

$ Console Community · 100/wk Open console ›