Mandrakesoft » Mandrake Linux : Security Vulnerabilities, CVEs, Published In 2005 (Overflow)
scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmap_unit value that leads to a buffer overflow.
Max CVSS
7.5
EPSS Score
1.71%
Published
2005-03-02
Updated
2018-10-03
Buffer overflow in playmidi before 2.4 allows local users to execute arbitrary code.
Max CVSS
7.2
EPSS Score
0.06%
Published
2005-04-14
Updated
2017-07-11
The pnm_get_chunk function in xine 0.99.2 and earlier, and other packages such as MPlayer that use the same code, does not properly verify that the chunk size is less than the PREAMBLE_SIZE, which causes a read operation with a negative length that leads to a buffer overflow via (1) RMF_TAG, (2) DATA_TAG, (3) PROP_TAG, (4) MDPR_TAG, and (5) CONT_TAG values, a different vulnerability than CVE-2004-1187.
Max CVSS
10.0
EPSS Score
0.49%
Published
2005-01-10
Updated
2017-07-11
Heap-based buffer overflow in the pnm_get_chunk function for xine 0.99.2, and other packages such as MPlayer that use the same code, allows remote attackers to execute arbitrary code via long PNA_TAG values, a different vulnerability than CVE-2004-1188.
Max CVSS
10.0
EPSS Score
4.01%
Published
2005-01-10
Updated
2017-07-11
4 vulnerabilities found