CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2004-1726

Multiple integer overflows in (1) xviris.c, (2) xvpcx.c, and (3) xvpm.c in XV allow remote attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.048

EPSS Ranking 89.0%

CVSS Severity

CVSS v2 Score 7.5

References

http://marc.info/?l=bugtraq&m=109302498125092&w=2
http://www.securityfocus.com/bid/10985
https://exchange.xforce.ibmcloud.com/vulnerabilities/17053
http://marc.info/?l=bugtraq&m=109302498125092&w=2
http://www.securityfocus.com/bid/10985
https://exchange.xforce.ibmcloud.com/vulnerabilities/17053

Products affected by CVE-2004-1726

John Bradley » Xv » Version: 3.10a

cpe:2.3:a:john_bradley:xv:3.10a

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-1726

Products

Pricing

Contact Us