CVE-2002-0167

Imlib before 1.9.13 sometimes uses the NetPBM package to load trusted images, which could allow attackers to cause a denial of service (crash) and possibly execute arbitrary code via certain weaknesses of NetPBM.

Published: Apr 22, 2002
Updated: Apr 13, 2023
CVE: CVE-2002-0167
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
enlightenment / imlib	1.9.8	1.9.8.x
enlightenment / imlib	1.9.3	1.9.3.x
enlightenment / imlib	1.9.7	1.9.7.x
enlightenment / imlib	1.9.1	1.9.1.x
enlightenment / imlib	1.9.10	1.9.10.x
enlightenment / imlib	1.9.4	1.9.4.x
enlightenment / imlib	1.9.2	1.9.2.x
enlightenment / imlib	1.9.11	1.9.11.x
enlightenment / imlib	1.9.12	1.9.12.x
enlightenment / imlib	1.9.9	1.9.9.x
enlightenment / imlib	1.9.5	1.9.5.x
enlightenment / imlib	1.9.6	1.9.6.x
enlightenment / imlib	1.9	1.9.x

ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-019.0.txt
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000470
http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-029.php
http://www.novell.com/linux/security/advisories/2002_015_imlib_txt.html
http://www.redhat.com/support/errata/RHSA-2002-048.html
http://www.securityfocus.com/bid/4339

Vulnerability Database

289,599

CVE-2002-0167