CVE-2004-0941

Multiple buffer overflows in the gd graphics library (libgd) 2.0.21 and earlier may allow remote attackers to execute arbitrary code via malformed image files that trigger the overflows due to improper calls to the gdMalloc function, a different set of vulnerabilities than CVE-2004-0990.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.trustix.org/errata/2004/0058	Patch Vendor Advisory
http://www.securityfocus.com/bid/11663	Patch Vendor Advisory
http://secunia.com/advisories/13179/
http://www.redhat.com/support/errata/RHSA-2006-0194.html
http://secunia.com/advisories/18686
http://secunia.com/advisories/20824
http://secunia.com/advisories/21050
http://www.debian.org/security/2004/dsa-601
http://www.redhat.com/support/errata/RHSA-2004-638.html
http://www.ciac.org/ciac/bulletins/p-071.shtml
http://www.mandriva.com/security/advisories?name=MDKSA-2006:113
http://www.mandriva.com/security/advisories?name=MDKSA-2006:114
http://www.mandriva.com/security/advisories?name=MDKSA-2006:122
https://www.ubuntu.com/usn/usn-33-1/
https://www.ubuntu.com/usn/usn-25-1/
https://exchange.xforce.ibmcloud.com/vulnerabilities/18048
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1195
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11176

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:gd_graphics_library:gdlib:2.0.22:::::::*
	cpe:2.3:a:gd_graphics_library:gdlib:2.0.23:::::::*
	cpe:2.3:a:gd_graphics_library:gdlib:2.0.26:::::::*
	cpe:2.3:a:gd_graphics_library:gdlib:1.8.4:::::::*
	cpe:2.3:a:gd_graphics_library:gdlib:2.0.1:::::::*
	cpe:2.3:a:gd_graphics_library:gdlib:2.0.33:::::::*
	cpe:2.3:a:gd_graphics_library:gdlib:2.0.27:::::::*
	cpe:2.3:a:gd_graphics_library:gdlib:2.0.28:::::::*
	cpe:2.3:a:gd_graphics_library:gdlib:2.0.20:::::::*
	cpe:2.3:a:gd_graphics_library:gdlib:2.0.21:::::::*

Configuration 2 (hide)

OR	cpe:2.3:o:trustix:secure_linux:2.1:::::::*
	cpe:2.3:o:trustix:secure_linux:2.2:::::::*
	cpe:2.3:o:trustix:secure_linux:1.5:::::::*
	cpe:2.3:o:trustix:secure_linux:2.0:::::::*

Information

Published : 2005-02-08 21:00

Updated : 2018-05-02 18:29

NVD link : CVE-2004-0941

Mitre link : CVE-2004-0941

JSON object : View

CWE

NVD-CWE-Other

Products Affected

trustix

secure_linux

gd_graphics_library

gdlib

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.trustix.org/errata/2004/0058", "name": "2004-0058", "tags": ["Patch", "Vendor Advisory"], "refsource": "TRUSTIX"}, {"url": "http://www.securityfocus.com/bid/11663", "name": "11663", "tags": ["Patch", "Vendor Advisory"], "refsource": "BID"}, {"url": "http://secunia.com/advisories/13179/", "name": "13179", "tags": [], "refsource": "SECUNIA"}, {"url": "http://www.redhat.com/support/errata/RHSA-2006-0194.html", "name": "RHSA-2006:0194", "tags": [], "refsource": "REDHAT"}, {"url": "http://secunia.com/advisories/18686", "name": "18686", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/20824", "name": "20824", "tags": [], "refsource": "SECUNIA"}, {"url": "http://secunia.com/advisories/21050", "name": "21050", "tags": [], "refsource": "SECUNIA"}, {"url": "http://www.debian.org/security/2004/dsa-601", "name": "DSA-601", "tags": [], "refsource": "DEBIAN"}, {"url": "http://www.redhat.com/support/errata/RHSA-2004-638.html", "name": "RHSA-2004:638", "tags": [], "refsource": "REDHAT"}, {"url": "http://www.ciac.org/ciac/bulletins/p-071.shtml", "name": "P-071", "tags": [], "refsource": "CIAC"}, {"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:113", "name": "MDKSA-2006:113", "tags": [], "refsource": "MANDRIVA"}, {"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:114", "name": "MDKSA-2006:114", "tags": [], "refsource": "MANDRIVA"}, {"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2006:122", "name": "MDKSA-2006:122", "tags": [], "refsource": "MANDRIVA"}, {"url": "https://www.ubuntu.com/usn/usn-33-1/", "name": "USN-33-1", "tags": [], "refsource": "UBUNTU"}, {"url": "https://www.ubuntu.com/usn/usn-25-1/", "name": "USN-25-1", "tags": [], "refsource": "UBUNTU"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18048", "name": "gd-graphics-gdmalloc-bo(18048)", "tags": [], "refsource": "XF"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1195", "name": "oval:org.mitre.oval:def:1195", "tags": [], "refsource": "OVAL"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11176", "name": "oval:org.mitre.oval:def:11176", "tags": [], "refsource": "OVAL"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Multiple buffer overflows in the gd graphics library (libgd) 2.0.21 and earlier may allow remote attackers to execute arbitrary code via malformed image files that trigger the overflows due to improper calls to the gdMalloc function, a different set of vulnerabilities than CVE-2004-0990."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2004-0941", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": true, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2005-02-09T05:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:gd_graphics_library:gdlib:2.0.22:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gd_graphics_library:gdlib:2.0.23:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gd_graphics_library:gdlib:2.0.26:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gd_graphics_library:gdlib:1.8.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gd_graphics_library:gdlib:2.0.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gd_graphics_library:gdlib:2.0.33:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gd_graphics_library:gdlib:2.0.27:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gd_graphics_library:gdlib:2.0.28:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gd_graphics_library:gdlib:2.0.20:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:gd_graphics_library:gdlib:2.0.21:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:trustix:secure_linux:2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:trustix:secure_linux:2.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:trustix:secure_linux:1.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:o:trustix:secure_linux:2.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-05-03T01:29Z"}

10.0 /10