CVE-2005-3964

Name of the Vulnerable Software and Affected Versions OpenMotif versions 2.1.30 through 2.2.3 OpenMotif version 2.2.3 OpenMotif versions prior to 2.2.3-r8

Description The issue allows attackers to execute arbitrary code via the diag issue diagnostic function in UilDiags.c and the open source file function in UilSrcSrc.c, potentially leading to disruption of confidentiality, integrity, and availability of protected information. Exploitation can be carried out remotely.

Recommendations For OpenMotif versions 2.1.30 through 2.2.3, consider disabling the diag issue diagnostic and open source file functions until a patch is available. For OpenMotif versions prior to 2.2.3-r8, update to version 2.2.3-r8 or later to resolve the issue. At the moment, there is no information about additional mitigation measures for other affected versions.