Vulnerability Details : CVE-2005-2976
Integer overflow in io-xpm.c in gdk-pixbuf 0.22.0 in GTK+ before 2.8.7 allows attackers to cause a denial of service (crash) or execute arbitrary code via an XPM file with large height, width, and colour values, a different vulnerability than CVE-2005-3186.
Vulnerability category: OverflowExecute codeDenial of service
Exploit prediction scoring system (EPSS) score for CVE-2005-2976
Probability of exploitation activity in the next 30 days: 1.27%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 84 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2005-2976
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
CWE ids for CVE-2005-2976
-
Assigned by: nvd@nist.gov (Primary)
-
The product performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control.Assigned by: nvd@nist.gov (Primary)
Vendor statements for CVE-2005-2976
-
Red Hat 2007-03-14Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.
-
http://www.securityfocus.com/bid/15428
Broken Link;Third Party Advisory;VDB Entry
-
http://secunia.com/advisories/17791
Vendor Advisory
-
http://www.mandriva.com/security/advisories?name=MDKSA-2005:214
Advisories - Mandriva LinuxBroken Link;Third Party Advisory
-
http://secunia.com/advisories/17615
Vendor Advisory
-
http://www.redhat.com/support/errata/RHSA-2005-810.html
Patch;Vendor Advisory
-
http://www.debian.org/security/2005/dsa-913
Third Party Advisory
-
http://www.ubuntu.com/usn/usn-216-1
Third Party Advisory
-
http://www.debian.org/security/2005/dsa-911
Third Party Advisory
-
http://secunia.com/advisories/17594
Vendor Advisory
-
http://secunia.com/advisories/17710
Vendor Advisory
-
http://www.vupen.com/english/advisories/2005/2433
Broken Link;Vendor Advisory
-
http://www.securityfocus.com/archive/1/428052/100/0/threaded
Third Party Advisory;VDB Entry
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11370
Broken Link
-
http://www.gentoo.org/security/en/glsa/glsa-200511-14.xml
Third Party Advisory
-
http://secunia.com/advisories/17770
Vendor Advisory
-
http://secunia.com/advisories/17538
Vendor Advisory
-
http://support.avaya.com/elmodocs2/security/ASA-2005-229.pdf
Third Party Advisory
-
http://secunia.com/advisories/17592
Vendor Advisory
-
http://secunia.com/advisories/17657
About Secunia Research | FlexeraVendor Advisory
-
http://secunia.com/advisories/17562
Vendor Advisory
-
http://www.novell.com/linux/security/advisories/2005_65_gtk2.html
Third Party Advisory
-
http://securitytracker.com/id?1015216
Third Party Advisory;VDB Entry
-
http://secunia.com/advisories/17522
Vendor Advisory
- cpe:2.3:a:gnome:gdkpixbuf:0.22:*:*:*:*:*:*:*
- cpe:2.3:a:gnome:gtk:*:*:*:*:*:*:*:*