CVE-2004-0693: Medium severity Trolltech Qt vulnerability

Q: What is the severity of CVE-2004-0693?

CVE-2004-0693 has been classified as a denial of service vulnerability that can cause application crashes.

Q: How do I fix CVE-2004-0693?

To fix CVE-2004-0693, upgrade the QT library to version 3.3.3 or later.

Q: What software is affected by CVE-2004-0693?

CVE-2004-0693 affects the QT library version prior to 3.3.3.

Q: What types of attacks exploit CVE-2004-0693?

CVE-2004-0693 can be exploited by sending specially crafted GIF image files to trigger application crashes.

Q: Is CVE-2004-0693 related to any other vulnerabilities?

Yes, CVE-2004-0693 is a different vulnerability than CVE-2004-0692.

Published Aug 25, 2004

Updated

The GIF parser in the QT library (qt3) before 3.3.3 allows remote attackers to cause a denial of service (application crash) via a malformed image file that triggers a null dereference, a different vulnerability than CVE-2004-0692.

Affected Software

1 affected component

Trolltech Qt<=3.3.3

Remediation

Patch Available

http://security.gentoo.org/glsa/glsa-200408-20.xml

Event History

Aug 25, 2004

CVE Published

via MITRE·08:00 AM

Data Sourced

via MITRE·08:00 AM

Description

Frequently Asked Questions

What is the severity of CVE-2004-0693?

CVE-2004-0693 has been classified as a denial of service vulnerability that can cause application crashes.

How do I fix CVE-2004-0693?

To fix CVE-2004-0693, upgrade the QT library to version 3.3.3 or later.

What software is affected by CVE-2004-0693?