Vulnerabilities > CVE-2005-0686 - Remote Security vulnerability in mlterm

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
mlterm
nessus

Summary

Integer overflow in mlterm 2.5.0 through 2.9.1, with gdk-pixbuf support enabled, allows remote attackers to execute arbitrary code via a large image file that is used as a background.

Nessus

NASL familyGentoo Local Security Checks
NASL idGENTOO_GLSA-200503-13.NASL
descriptionThe remote host is affected by the vulnerability described in GLSA-200503-13 (mlterm: Integer overflow vulnerability) mlterm is vulnerable to an integer overflow that can be triggered by specifying a large image file as a background. This only effects users that have compiled mlterm with the
last seen2020-06-01
modified2020-06-02
plugin id17287
published2005-03-08
reporterThis script is Copyright (C) 2005-2019 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/17287
titleGLSA-200503-13 : mlterm: Integer overflow vulnerability