CVE-2005-2495

medium
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

Multiple integer overflows in XFree86 before 4.3.0 allow user-assisted attackers to execute arbitrary code via a crafted pixmap image.

References

ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.22/SCOSA-2006.22.txt

ftp://patches.sgi.com/support/free/security/advisories/20060403-01-U

http://marc.info/?l=bugtraq&m=112690609622266&w=2

http://secunia.com/advisories/16777

http://secunia.com/advisories/16790

http://secunia.com/advisories/17044

http://secunia.com/advisories/17215

http://secunia.com/advisories/17258

http://secunia.com/advisories/17278

http://secunia.com/advisories/19624

http://secunia.com/advisories/19796

http://secunia.com/advisories/21318

http://securitytracker.com/id?1014887

http://sunsolve.sun.com/search/document.do?assetkey=1-26-101926-1

http://sunsolve.sun.com/search/document.do?assetkey=1-26-101953-1

http://support.avaya.com/elmodocs2/security/ASA-2005-218.pdf

http://support.avaya.com/elmodocs2/security/ASA-2005-226.pdf

http://www.debian.org/security/2005/dsa-816

http://www.gentoo.org/security/en/glsa/glsa-200509-07.xml

http://www.kb.cert.org/vuls/id/102441

http://www.mandriva.com/security/advisories?name=MDKSA-2005:164

http://www.novell.com/linux/security/advisories/2005_23_sr.html

http://www.novell.com/linux/security/advisories/2005_56_xserver.html

http://www.osvdb.org/19352

http://www.redhat.com/support/errata/RHSA-2005-329.html

http://www.redhat.com/support/errata/RHSA-2005-396.html

http://www.redhat.com/support/errata/RHSA-2005-501.html

http://www.securityfocus.com/advisories/9285

http://www.securityfocus.com/advisories/9286

http://www.securityfocus.com/archive/1/427045/100/0/threaded

http://www.securityfocus.com/archive/1/442163/100/0/threaded

http://www.securityfocus.com/bid/14807

http://www.vupen.com/english/advisories/2006/3140

https://exchange.xforce.ibmcloud.com/vulnerabilities/22244

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1044

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9615

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A998

https://www.ubuntu.com/usn/usn-182-1/

Details

Source: MITRE

Published: 2005-09-15

Updated: 2018-10-19

Type: CWE-189

Risk Information

CVSS v2

Base Score: 5.1

Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P

Impact Score: 6.4

Exploitability Score: 4.9

Severity: MEDIUM

Tenable Plugins

View all (37 total)

IDNameProductFamilySeverity
130510Solaris 10 (x86) : 119060-73NessusSolaris Local Security Checks
high
130508Solaris 10 (sparc) : 119059-74NessusSolaris Local Security Checks
high
107806Solaris 10 (x86) : 119060-71NessusSolaris Local Security Checks
high
107805Solaris 10 (x86) : 119060-70NessusSolaris Local Security Checks
high
107804Solaris 10 (x86) : 119060-69NessusSolaris Local Security Checks
high
107803Solaris 10 (x86) : 119060-68NessusSolaris Local Security Checks
high
107802Solaris 10 (x86) : 119060-65NessusSolaris Local Security Checks
high
107801Solaris 10 (x86) : 119060-64NessusSolaris Local Security Checks
high
107304Solaris 10 (sparc) : 119059-72NessusSolaris Local Security Checks
high
107303Solaris 10 (sparc) : 119059-71NessusSolaris Local Security Checks
high
107302Solaris 10 (sparc) : 119059-70NessusSolaris Local Security Checks
high
107301Solaris 10 (sparc) : 119059-69NessusSolaris Local Security Checks
high
107300Solaris 10 (sparc) : 119059-66NessusSolaris Local Security Checks
high
107299Solaris 10 (sparc) : 119059-65NessusSolaris Local Security Checks
high
82537Solaris 10 (x86) : 119060-45NessusSolaris Local Security Checks
high
82536Solaris 10 (sparc) : 119059-46NessusSolaris Local Security Checks
high
23609Solaris 9 (x86) : 118908-06NessusSolaris Local Security Checks
high
23300Solaris 8 (sparc) : 108652-98NessusSolaris Local Security Checks
medium
22985Solaris 10 (x86) : 119060-72 (deprecated)NessusSolaris Local Security Checks
high
22984Solaris 10 (x86) : 118966-25NessusSolaris Local Security Checks
medium
22952Solaris 10 (sparc) : 119059-73 (deprecated)NessusSolaris Local Security Checks
high
22179HP-UX PHSS_32966 : HP-UX Running Xserver Local Execution of Arbitrary Code, Privilege Elevation (HPSBUX02137 SSRT051024 rev.1)NessusHP-UX Local Security Checks
medium
22178HP-UX PHSS_32965 : HP-UX Running Xserver Local Execution of Arbitrary Code, Privilege Elevation (HPSBUX02137 SSRT051024 rev.1)NessusHP-UX Local Security Checks
medium
22177HP-UX PHSS_32960 : HP-UX Running Xserver Local Execution of Arbitrary Code, Privilege Elevation (HPSBUX02137 SSRT051024 rev.1)NessusHP-UX Local Security Checks
medium
21934CentOS 4 : xorg-x11 (CESA-2005:396)NessusCentOS Local Security Checks
medium
21833CentOS 3 : XFree86 (CESA-2005:501)NessusCentOS Local Security Checks
medium
21490FreeBSD : X11 server -- pixmap allocation vulnerability (a863aa74-24be-11da-8882-000e0c33c2dc)NessusFreeBSD Local Security Checks
medium
20593Ubuntu 4.10 / 5.04 : xorg, xfree86 vulnerabilities (USN-182-1)NessusUbuntu Local Security Checks
medium
19919Mandrake Linux Security Advisory : XFree86 (MDKSA-2005:164)NessusMandriva Local Security Checks
medium
19867Slackware 10.0 / 10.1 / 10.2 / current : X.Org pixmap overflow (SSA:2005-269-02)NessusSlackware Local Security Checks
medium
19785Debian DSA-816-1 : xfree86 - integer overflowNessusDebian Local Security Checks
medium
19740Fedora Core 4 : xorg-x11-6.8.2-37.FC4.48.1 (2005-894)NessusFedora Local Security Checks
medium
19739Fedora Core 3 : xorg-x11-6.8.2-1.FC3.45 (2005-893)NessusFedora Local Security Checks
medium
19712RHEL 3 : XFree86 (RHSA-2005:501)NessusRed Hat Local Security Checks
medium
19691RHEL 4 : xorg-x11 (RHSA-2005:396)NessusRed Hat Local Security Checks
medium
19688RHEL 2.1 : XFree86 (RHSA-2005:329)NessusRed Hat Local Security Checks
medium
19686GLSA-200509-07 : X.Org: Heap overflow in pixmap allocationNessusGentoo Local Security Checks
medium