CVE-2004-0692: Medium severity Trolltech Qt vulnerability

Q: What is the severity of CVE-2004-0692?

CVE-2004-0692 has a moderate severity level since it can lead to a denial of service through application crashes.

Q: How do I fix CVE-2004-0692?

To fix CVE-2004-0692, upgrade the QT library to version 3.3.3 or later.

Q: What vulnerabilities are associated with CVE-2004-0692?

CVE-2004-0692 is particularly related to a null dereference issue in the XPM parser of the QT library.

Q: What versions of QT are affected by CVE-2004-0692?

CVE-2004-0692 affects all QT library versions before 3.3.3.

Q: Can CVE-2004-0692 be exploited remotely?

Yes, CVE-2004-0692 can be exploited remotely through a malformed image file.

Published Aug 25, 2004

Updated

The XPM parser in the QT library (qt3) before 3.3.3 allows remote attackers to cause a denial of service (application crash) via a malformed image file that triggers a null dereference, a different vulnerability than CVE-2004-0693.

Affected Software

1 affected component

Trolltech Qt<=3.3.3

Remediation

Patch Available

http://security.gentoo.org/glsa/glsa-200408-20.xml

Event History

Aug 25, 2004

CVE Published

via MITRE·08:00 AM

Data Sourced

via MITRE·08:00 AM

Description

Frequently Asked Questions

What is the severity of CVE-2004-0692?

CVE-2004-0692 has a moderate severity level since it can lead to a denial of service through application crashes.

How do I fix CVE-2004-0692?

To fix CVE-2004-0692, upgrade the QT library to version 3.3.3 or later.

What vulnerabilities are associated with CVE-2004-0692?