CVE-2005-2976 in GTK+info

Summary

Integer overflow in io-xpm.c in gdk-pixbuf 0.22.0 in GTK+ before 2.8.7 allows attackers to cause a denial of service (crash) or execute arbitrary code via an XPM file with large height, width, and colour values, a different vulnerability than CVE-2005-3186.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

09/19/2005

Disclosure

11/18/2005

Moderation

VulDB entry created

Entries

1: VDB-26952

CPE

ready

CWE

CWE-189 (Confirmed)

CVSS

7.3

EPSS

0.01719

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2005-2976
NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-2976
CVE Details	https://www.cvedetails.com/cve/CVE-2005-2976/

◂ Previous Overview Next ▸