CVE-2004-0914

Name of the Vulnerable Software and Affected Versions: libXpm versions 6.8.1 and earlier

Description: The issue involves multiple problems in libXpm, including integer overflows, out-of-bounds memory accesses, directory traversal, shell metacharacter, endless loops, and memory leaks. These could allow remote attackers to obtain sensitive information, cause a denial of service, or execute arbitrary code via a certain XPM image file.

Recommendations: For libXpm versions 6.8.1 and earlier, consider updating to a version later than 6.8.1 to resolve the issue. As a temporary workaround, restrict the use of XPM image files to minimize the risk of exploitation. Avoid using potentially malicious XPM files until the issue is resolved.