Shodan
Vulnerabilities
Vulnerable Software
Gnome:  Security Vulnerabilities
CVE-2004-0783
Stack-based buffer overflow in xpm_extract_color (io-xpm.c) in the XPM image decoder for gtk+ 2.4.4 (gtk2) and earlier, and gdk-pixbuf before 0.22, may allow remote attackers to execute arbitrary code via a certain color string. NOTE: this identifier is ONLY for gtk+. It was incorrectly referenced in an advisory for a different issue (CVE-2004-0688).
CVSS Score
7.5
EPSS Score
0.306
Published
2004-10-20
CVE-2004-0788
Integer overflow in the ICO image decoder for (1) gdk-pixbuf before 0.22 and (2) gtk2 before 2.2.4 allows remote attackers to cause a denial of service (application crash) via a crafted ICO file.
CVSS Score
5.0
EPSS Score
0.129
Published
2004-10-20
CVE-2004-0111
gdk-pixbuf before 0.20 allows attackers to cause a denial of service (crash) via a malformed bitmap (BMP) file.
CVSS Score
5.0
EPSS Score
0.013
Published
2004-04-15
CVE-2003-0793
GDM 2.4.4.x before 2.4.4.4, and 2.4.1.x before 2.4.1.7, does not restrict the size of input, which allows attackers to cause a denial of service (memory consumption).
CVSS Score
2.1
EPSS Score
0.001
Published
2003-11-17
CVE-2003-0794
GDM 2.4.4.x before 2.4.4.4, and 2.4.1.x before 2.4.1.7, does not limit the number or duration of commands and uses a blocking socket connection, which allows attackers to cause a denial of service (resource exhaustion) by sending commands and not reading the results.
CVSS Score
2.1
EPSS Score
0.001
Published
2003-11-17
CVE-2003-0541
gtkhtml before 1.1.10, as used in Evolution, allows remote attackers to cause a denial of service (crash) via a malformed message that causes a null pointer dereference.
CVSS Score
5.0
EPSS Score
0.011
Published
2003-09-17
CVE-2003-0547
GDM before 2.4.1.6, when using the "examine session errors" feature, allows local users to read arbitrary files via a symlink attack on the ~/.xsession-errors file.
CVSS Score
2.1
EPSS Score
0.001
Published
2003-08-27
CVE-2003-0548
The X Display Manager Control Protocol (XDMCP) support for GDM before 2.4.1.6 allows attackers to cause a denial of service (daemon crash) when a chosen host expires, a different issue than CVE-2003-0549.
CVSS Score
5.0
EPSS Score
0.006
Published
2003-08-27
CVE-2003-0549
The X Display Manager Control Protocol (XDMCP) support for GDM before 2.4.1.6 allows attackers to cause a denial of service (daemon crash) via a short authorization key name.
CVSS Score
5.0
EPSS Score
0.006
Published
2003-08-27
CVE-2003-0407
Buffer overflow in gbnserver for Gnome Batalla Naval 1.0.4 allows remote attackers to execute arbitrary code via a long connection string.
CVSS Score
10.0
EPSS Score
0.039
Published
2003-06-30


Products
Pricing
Contact Us

Shodan ® - All rights reserved