Note:
This project will be discontinued after December 13, 2021. [more]
2001-10-18
Buffer overflow in xloadimage 4.1 (aka xli 1.16 and 1.17) in Linux allows remote attackers to execute arbitrary code via a FACES format image containing a long (1) Firstname or (2) Lastname field.
| Products | Xli, Xloadimage |
| Type | Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119) |
| First patch | - None (likely due to unavailable code) |
| Links |
• http://www.iss.net/security_center/static/6821.php
• http://www.debian.org/security/2005/dsa-695 • http://www.novell.com/linux/security/advisories/2001_024_xli_txt.html • http://www.gentoo.org/security/en/glsa/glsa-200503-05.xml • http://www.redhat.com/support/errata/RHSA-2001-088.html |