VYPR
Unrated severityNVD Advisory· Published Jan 10, 2005· Updated Jun 16, 2026

CVE-2004-0994

CVE-2004-0994

Description

Multiple integer overflows in xzgv 0.8 and earlier allow remote attackers to execute arbitrary code via images with large width and height values, which trigger a heap-based buffer overflow, as demonstrated in the read_prf_file function in readprf.c. NOTE: CVE-2004-0994 and CVE-2004-1095 identify sets of bugs that only partially overlap, despite having the same developer. Therefore, they should be regarded as distinct.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

18
  • cpe:2.3:a:zgv:xzgv_image_viewer:0.6:*:*:*:*:*:*:*+ 6 more
    • cpe:2.3:a:zgv:xzgv_image_viewer:0.6:*:*:*:*:*:*:*
    • cpe:2.3:a:zgv:xzgv_image_viewer:0.7:*:*:*:*:*:*:*
    • cpe:2.3:a:zgv:xzgv_image_viewer:0.8:*:*:*:*:*:*:*
    • cpe:2.3:a:zgv:zgv_image_viewer:5.5:*:*:*:*:*:*:*
    • cpe:2.3:a:zgv:zgv_image_viewer:5.6:*:*:*:*:*:*:*
    • cpe:2.3:a:zgv:zgv_image_viewer:5.7:*:*:*:*:*:*:*
    • cpe:2.3:a:zgv:zgv_image_viewer:5.8:*:*:*:*:*:*:*
  • Debian/linux11 versions
    cpe:2.3:o:debian:debian_linux:3.0:*:alpha:*:*:*:*:*+ 10 more
    • cpe:2.3:o:debian:debian_linux:3.0:*:alpha:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:arm:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:hppa:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:ia-32:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:ia-64:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:m68k:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:mips:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:mipsel:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:ppc:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:s-390:*:*:*:*:*
    • cpe:2.3:o:debian:debian_linux:3.0:*:sparc:*:*:*:*:*

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.