How to Buy
This script is Copyright (C) 2004-2014 Tenable Network Security, Inc.
The remote Red Hat host is missing one or more security updates.
Updated openmotif packages that fix flaws in the Xpm image library are
OpenMotif provides libraries which implement the Motif industry
standard graphical user interface.
During a source code audit, Chris Evans and others discovered several
stack overflow flaws and an integer overflow flaw in the libXpm
library used to decode XPM (X PixMap) images. A vulnerable version of
this library was found within OpenMotif. An attacker could create a
carefully crafted XPM file which would cause an application to crash
or potentially execute arbitrary code if opened by a victim. The
Common Vulnerabilities and Exposures project (cve.mitre.org) has
assigned the names CVE-2004-0687, CVE-2004-0688, and CVE-2004-0914 to
Users of OpenMotif are advised to upgrade to these erratum packages,
which contain backported security patches to the embedded libXpm
See also :
Update the affected openmotif, openmotif-devel and / or openmotif21
Risk factor :
Critical / CVSS Base Score : 10.0
Family: Red Hat Local Security Checks
Nessus Plugin ID: 15943 ()
CVE ID: CVE-2004-0687CVE-2004-0688CVE-2004-0883CVE-2004-0914CVE-2004-0949CVE-2004-1068CVE-2004-1071CVE-2004-1072
Nessus Professional: Scan unlimited IPs, run compliance checks & moreNessus Cloud: The power of Nessus for teams – from the cloud
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.