|
|
DIA SVG File Import Remote Arbitrary Code Execution Vulnerability
|
Bugtraq ID:
|
15000
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
CVE-2005-2966
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Oct 03 2005 12:00AM
|
|
Updated:
|
Dec 07 2006 05:09PM
|
|
Credit:
|
Discovery is credited to Joxean Koret <joxeankoret@yahoo.es>.
|
|
Vulnerable:
|
S.u.S.E. Linux Professional 10.0 OSS
S.u.S.E. Linux Professional 10.0
S.u.S.E. Linux Professional 9.3 x86_64
S.u.S.E. Linux Professional 9.3
S.u.S.E. Linux Personal 10.0 OSS
S.u.S.E. Linux Personal 9.3 x86_64
S.u.S.E. Linux Personal 9.3
S.u.S.E. beagle 10.0
Gentoo Linux
DIA DIA 0.92.2
DIA DIA 0.94
+
Ubuntu Ubuntu Linux 5.0 4 powerpc
+
Ubuntu Ubuntu Linux 5.0 4 i386
+
Ubuntu Ubuntu Linux 5.0 4 i386
+
Ubuntu Ubuntu Linux 5.0 4 amd64
+
Ubuntu Ubuntu Linux 5.0 4 amd64
DIA DIA 0.93
DIA DIA 0.91
Debian Linux 3.1 sparc
Debian Linux 3.1 s/390
Debian Linux 3.1 ppc
Debian Linux 3.1 mipsel
Debian Linux 3.1 mips
Debian Linux 3.1 m68k
Debian Linux 3.1 ia-64
Debian Linux 3.1 ia-32
Debian Linux 3.1 hppa
Debian Linux 3.1 arm
Debian Linux 3.1 amd64
Debian Linux 3.1 alpha
Debian Linux 3.1
Debian Linux 3.0 sparc
Debian Linux 3.0 s/390
Debian Linux 3.0 ppc
Debian Linux 3.0 mipsel
Debian Linux 3.0 mips
Debian Linux 3.0 m68k
Debian Linux 3.0 ia-64
Debian Linux 3.0 ia-32
Debian Linux 3.0 hppa
Debian Linux 3.0 arm
Debian Linux 3.0 alpha
Debian Linux 3.0
|
|
|
|
Not Vulnerable:
|
|
|
|
