Executive Summary
Summary | |
---|---|
Title | New Qt packages fix arbitrary code execution and denial of service |
Informations | |||
---|---|---|---|
Name | DSA-542 | First vendor Publication | 2004-08-30 |
Vendor | Debian | Last vendor Modification | 2004-08-30 |
Severity (Vendor) | N/A | Revision | 1 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P) | |||
---|---|---|---|
Cvss Base Score | 7.5 | Attack Range | Network |
Cvss Impact Score | 6.4 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Several vulnerabilities were discovered in recent versions of Qt, a commonly used graphic widget set, used in KDE for example. The first problem allows an attacker to execute arbitrary code, while the other two only seem to pose a denial of service danger. The Common Vulnerabilities and Exposures project identifies the following vulnerabilities: CAN-2004-0691: Chris Evans has discovered a heap-based overflow when handling 8-bit RLE encoded BMP files. CAN-2004-0692: Marcus Meissner has discovered a crash condition in the XPM handling code, which is not yet fixed in Qt 3.3. CAN-2004-0693: Marcus Meissner has discovered a crash condition in the GIF handling code, which is not yet fixed in Qt 3.3. For the stable distribution (woody) this problem has been fixed in version 3.0.3-20020329-1woody2. For the unstable distribution (sid) this problem has been fixed in version 3.3.3-4 of qt-x11-free. We recommend that you upgrade your qt packages. |
Original Source
Url : http://www.debian.org/security/2004/dsa-542 |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:10883 | |||
Oval ID: | oval:org.mitre.oval:def:10883 | ||
Title: | The GIF parser in the QT library (qt3) before 3.3.3 allows remote attackers to cause a denial of service (application crash) via a malformed image file that triggers a null dereference, a different vulnerability than CVE-2004-0692. | ||
Description: | The GIF parser in the QT library (qt3) before 3.3.3 allows remote attackers to cause a denial of service (application crash) via a malformed image file that triggers a null dereference, a different vulnerability than CVE-2004-0692. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2004-0693 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:9485 | |||
Oval ID: | oval:org.mitre.oval:def:9485 | ||
Title: | Heap-based buffer overflow in the BMP image format parser for the QT library (qt3) before 3.3.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code. | ||
Description: | Heap-based buffer overflow in the BMP image format parser for the QT library (qt3) before 3.3.3 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2004-0691 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 | Product(s): | |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2009-10-10 | Name : SLES9: Security update for qt3 File : nvt/sles9p5018833.nasl |
2008-09-24 | Name : Gentoo Security Advisory GLSA 200408-20 (Qt) File : nvt/glsa_200408_20.nasl |
2008-09-04 | Name : FreeBSD Ports: linux_base File : nvt/freebsd_linux_base.nasl |
2008-09-04 | Name : FreeBSD Ports: qt File : nvt/freebsd_qt.nasl |
2008-01-17 | Name : Debian Security Advisory DSA 542-1 (qt-copy) File : nvt/deb_542_1.nasl |
0000-00-00 | Name : Slackware Advisory SSA:2004-236-01 Qt File : nvt/esoft_slk_ssa_2004_236_01.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
9036 | Qt XPM Parser NULL Dereference Remote DoS Qt contains a flaw that may allow a remote denial of service. The issue is triggered when a NULL derefernce occurs in the XPM parser, and will result in loss of availability for the system running Qt. No further details have been provided. |
9035 | Qt GIF Parser Null Dereference Remote DoS Qt contains a flaw that may allow a remote denial of service. The issue is triggered when a NULL derefernce occurs in the GIF parser, and will result in loss of availability for the system running Qt. No further details have been provided. |
9026 | Qt qimage.cpp read_dib Function BMP Handling Overflow A remote overflow exists in Trolltech Qt. The read_dib() fails to check user supplied d resulting in a buffer overflow in at least three blocks of code. With a specially crafted request, an attacker can execute arbitrary code with the privelege of the current user resulting in a loss of confidentiality, integrity, and/or availability. |
Snort® IPS/IDS
Date | Description |
---|---|
2018-02-03 | Qt library BMP image parser heap overflow exploit attempt RuleID : 45306 - Revision : 1 - Type : FILE-IMAGE |
2018-02-03 | Qt library BMP image parser heap overflow exploit attempt RuleID : 45305 - Revision : 1 - Type : FILE-IMAGE |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2005-07-13 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_bf2e7483d3fa440d8c6e8f1f2f018818.nasl - Type : ACT_GATHER_INFO |
2005-07-13 | Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2004-236-01.nasl - Type : ACT_GATHER_INFO |
2004-10-08 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2004-479.nasl - Type : ACT_GATHER_INFO |
2004-10-06 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2004-478.nasl - Type : ACT_GATHER_INFO |
2004-09-29 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-542.nasl - Type : ACT_GATHER_INFO |
2004-09-15 | Name : The remote Fedora Core host is missing a security update. File : fedora_2004-286.nasl - Type : ACT_GATHER_INFO |
2004-09-15 | Name : The remote Fedora Core host is missing a security update. File : fedora_2004-287.nasl - Type : ACT_GATHER_INFO |
2004-09-15 | Name : The remote Fedora Core host is missing a security update. File : fedora_2004-288.nasl - Type : ACT_GATHER_INFO |
2004-09-15 | Name : The remote Fedora Core host is missing a security update. File : fedora_2004-289.nasl - Type : ACT_GATHER_INFO |
2004-09-15 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2004-466.nasl - Type : ACT_GATHER_INFO |
2004-09-15 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2004-447.nasl - Type : ACT_GATHER_INFO |
2004-08-30 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200408-20.nasl - Type : ACT_GATHER_INFO |
2004-08-23 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_qt_333.nasl - Type : ACT_GATHER_INFO |
2004-08-23 | Name : The remote Fedora Core host is missing a security update. File : fedora_2004-271.nasl - Type : ACT_GATHER_INFO |
2004-08-23 | Name : The remote Fedora Core host is missing a security update. File : fedora_2004-270.nasl - Type : ACT_GATHER_INFO |
2004-08-22 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2004-414.nasl - Type : ACT_GATHER_INFO |
2004-08-22 | Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2004-085.nasl - Type : ACT_GATHER_INFO |
2004-08-20 | Name : The remote host is missing a vendor-supplied security patch File : suse_SA_2004_027.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 11:33:25 |
|