CVE-2006-1550 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-1550
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-1550

Description: Multiple buffer overflows in the xfig import code (xfig-import.c) in Dia 0.87 and later before 0.95-pre6 allow user-assisted attackers to have an unknown impact via a crafted xfig file, possibly involving an invalid (1) color index, (2) number of points, or (3) depth.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/25566 UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-266-1 SUSE http://www.novell.com/linux/security/advisories/2006_04_28.html ST 1015853 SAID Secunia Advisory: SA19469 Secunia Advisory: SA19505 Secunia Advisory: SA19507 Secunia Advisory: SA19543 Secunia Advisory: SA19546 Secunia Advisory: SA19765 Secunia Advisory: SA19897 Secunia Advisory: SA19959 REDHAT http://www.redhat.com/support/errata/RHSA-2006-0280.html MLIST http://mail.gnome.org/archives/dia-list/2006-March/msg00149.html MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:062 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200604-14.xml FEDORA http://www.redhat.com/archives/fedora-announce-list/2006-April/msg00021.html DEBIAN http://www.debian.org/security/2006/dsa-1025 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/429357/100/0/threaded BID 17310

Return to the previous page.