CVE-2002-1277

Buffer overflow in Window Maker (wmaker) 0.80.0 and earlier may allow remote attackers to execute arbitrary code via a certain image file that is not properly handled when Window Maker uses width and height information to allocate a buffer.

Published: Nov 12, 2002
Updated: Apr 13, 2023
CVE: CVE-2002-1277
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
windowmaker / windowmaker	0.62	0.62.x
windowmaker / windowmaker	0.63.1	0.63.1.x
windowmaker / windowmaker	0.64	0.64.x
windowmaker / windowmaker	0.53	0.53.x
windowmaker / windowmaker	0.63	0.63.x
windowmaker / windowmaker	0.62.1	0.62.1.x
windowmaker / windowmaker	0.61	0.61.x
windowmaker / windowmaker	0.80	0.80.x
windowmaker / windowmaker	0.61.1	0.61.1.x
windowmaker / windowmaker	0.65	0.65.x
windowmaker / windowmaker	0.20.1.3	0.20.1.3.x
windowmaker / windowmaker	0.52.2	0.52.2.x

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000548
http://www.debian.org/security/2002/dsa-190
http://www.iss.net/security_center/static/10560.php
http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-085.php
http://www.redhat.com/support/errata/RHSA-2003-009.html
http://www.redhat.com/support/errata/RHSA-2003-043.html
http://www.securityfocus.com/bid/6119

Vulnerability Database

290,278

CVE-2002-1277