Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple integer overflows in xzgv 0.8 and earlier allow remote attackers to execute arbitrary code via images with large width and height values, which trigger a heap-based buffer overflow, as demonstrated in the read_prf_file function in readprf.c. NOTE: CVE-2004-0994 and CVE-2004-1095 identify sets of bugs that only partially overlap, despite having the same developer. Therefore, they should be regarded as distinct.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
xzgv 多个 整数溢出漏洞
Vulnerability Description
xzgv是一款开源的X界面下的图片浏览器软件。 Xzgv 0.8版本中存在多个整数溢出漏洞。 远程攻击者可通过包含超大的width/height值图片文件,触发溢出。如read_prf_file功能模块中readprf.c就可以被攻击者利用,从而可能执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A