Unrated severityNVD Advisory· Published Jan 10, 2005· Updated Jun 16, 2026
CVE-2004-0994
CVE-2004-0994
Description
Multiple integer overflows in xzgv 0.8 and earlier allow remote attackers to execute arbitrary code via images with large width and height values, which trigger a heap-based buffer overflow, as demonstrated in the read_prf_file function in readprf.c. NOTE: CVE-2004-0994 and CVE-2004-1095 identify sets of bugs that only partially overlap, despite having the same developer. Therefore, they should be regarded as distinct.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
18cpe:2.3:a:zgv:xzgv_image_viewer:0.6:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:zgv:xzgv_image_viewer:0.6:*:*:*:*:*:*:*
- cpe:2.3:a:zgv:xzgv_image_viewer:0.7:*:*:*:*:*:*:*
- cpe:2.3:a:zgv:xzgv_image_viewer:0.8:*:*:*:*:*:*:*
- cpe:2.3:a:zgv:zgv_image_viewer:5.5:*:*:*:*:*:*:*
- cpe:2.3:a:zgv:zgv_image_viewer:5.6:*:*:*:*:*:*:*
- cpe:2.3:a:zgv:zgv_image_viewer:5.7:*:*:*:*:*:*:*
- cpe:2.3:a:zgv:zgv_image_viewer:5.8:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:3.0:*:alpha:*:*:*:*:*+ 10 more
- cpe:2.3:o:debian:debian_linux:3.0:*:alpha:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:arm:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:hppa:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:ia-32:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:ia-64:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:m68k:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:mips:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:mipsel:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:ppc:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:s-390:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:3.0:*:sparc:*:*:*:*:*
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.