CVE-2004-0688

Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) ParsePixels, and (5) ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to execute arbitrary code via a malformed XPM image file.

Published: 2004-10-20 Last update: 2026-04-16 Assigner: [email protected] Source: [email protected]
NVD Status:ModifiedCVE State: published
View at NVD, CVE.org, EUVD

CVE-2004-0688 is rated Moderate Risk (64/100): CVSS High severity, with high exploitation likelihood (EPSS 16.73%, 95th percentile). EPSS ranks this CVE among the most likely to be exploited in the near term. High exploitation likelihood—assess exposure and prioritize remediation.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Exploit prediction scoring system (EPSS) score for CVE-2004-0688

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2026-05-30 16.03% 16.73% +0.70%
2 2025-03-30 22.77% 16.03% -6.74%
3 2025-03-29 22.77%

Full EPSS history (9 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2004-0688

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
7.5 2.0 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P Click to expand
Access vector (AV:N)
Can be exploited remotely over network reachability.
Access complexity (AC:L)
Exploitation conditions are straightforward and predictable.
Authentication (AU:N)
No authentication is required.
Confidentiality impact (C:P)
Partial confidentiality impact.
Integrity impact (I:P)
Partial integrity impact.
Availability impact (A:P)
Partial availability impact.
 10.0 6.4 [email protected]

Weakness enumeration for CVE-2004-0688

OS Trackers for CVE-2004-0688

vendor priority summary link
redhat medium https://access.redhat.com/security/cve/CVE-2004-0688
ubuntu medium CVE-2004-0688 medium priority: Ubuntu including 4 source packages (lesstif1-1, lesstif2, openmotif, xorg), 16 status rows across 4 suites (dapper, edgy, feisty, upstream): released 8, needs-triage 4, not-affected 3, DNE 1. https://ubuntu.com/security/CVE-2004-0688

Vendor comments (NVD) for CVE-2004-0688

  • Red Hat (2007-03-14T00:00:00)

    Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.

Affected software / configurations for CVE-2004-0688

Vendor Product Version Raw CPE
x.org x11r6 6.7.0 cpe:2.3:a:x.org:x11r6:6.7.0:*:*:*:*:*:*:*
x.org x11r6 6.8 cpe:2.3:a:x.org:x11r6:6.8:*:*:*:*:*:*:*
xfree86_project x11r6 3.3.6 cpe:2.3:a:xfree86_project:x11r6:3.3.6:*:*:*:*:*:*:*
xfree86_project x11r6 4.0 cpe:2.3:a:xfree86_project:x11r6:4.0:*:*:*:*:*:*:*
xfree86_project x11r6 4.0.1 cpe:2.3:a:xfree86_project:x11r6:4.0.1:*:*:*:*:*:*:*
xfree86_project x11r6 4.0.2.11 cpe:2.3:a:xfree86_project:x11r6:4.0.2.11:*:*:*:*:*:*:*
xfree86_project x11r6 4.0.3 cpe:2.3:a:xfree86_project:x11r6:4.0.3:*:*:*:*:*:*:*
xfree86_project x11r6 4.1.0 cpe:2.3:a:xfree86_project:x11r6:4.1.0:*:*:*:*:*:*:*
xfree86_project x11r6 4.1.11 cpe:2.3:a:xfree86_project:x11r6:4.1.11:*:*:*:*:*:*:*
xfree86_project x11r6 4.1.12 cpe:2.3:a:xfree86_project:x11r6:4.1.12:*:*:*:*:*:*:*
xfree86_project x11r6 4.2.0 cpe:2.3:a:xfree86_project:x11r6:4.2.0:*:*:*:*:*:*:*
xfree86_project x11r6 4.2.1 cpe:2.3:a:xfree86_project:x11r6:4.2.1:*:*:*:*:*:*:*
xfree86_project x11r6 4.2.1 cpe:2.3:a:xfree86_project:x11r6:4.2.1:*:errata:*:*:*:*:*
xfree86_project x11r6 4.3.0 cpe:2.3:a:xfree86_project:x11r6:4.3.0:*:*:*:*:*:*:*
openbsd openbsd 3.4 cpe:2.3:o:openbsd:openbsd:3.4:*:*:*:*:*:*:*
openbsd openbsd 3.5 cpe:2.3:o:openbsd:openbsd:3.5:*:*:*:*:*:*:*
suse suse_linux 8 cpe:2.3:o:suse:suse_linux:8:*:enterprise_server:*:*:*:*:*
suse suse_linux 8.1 cpe:2.3:o:suse:suse_linux:8.1:*:*:*:*:*:*:*
suse suse_linux 8.2 cpe:2.3:o:suse:suse_linux:8.2:*:*:*:*:*:*:*
suse suse_linux 9.0 cpe:2.3:o:suse:suse_linux:9.0:*:*:*:*:*:*:*
suse suse_linux 9.0 cpe:2.3:o:suse:suse_linux:9.0:*:enterprise_server:*:*:*:*:*
suse suse_linux 9.0 cpe:2.3:o:suse:suse_linux:9.0:*:x86_64:*:*:*:*:*
suse suse_linux 9.1 cpe:2.3:o:suse:suse_linux:9.1:*:*:*:*:*:*:*

References for CVE-2004-0688

URL Tags
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000924
http://ftp.x.org/pub/X11R6.8.0/patches/README.xorg-CAN-2004-0687-0688.patch
http://lists.apple.com/archives/security-announce/2005/May/msg00001.html
http://marc.info/?l=bugtraq&m=109530851323415&w=2
http://scary.beasts.org/security/CESA-2004-003.txt
http://secunia.com/advisories/20235
http://sunsolve.sun.com/search/document.do?assetkey=1-26-57653-1
http://www.debian.org/security/2004/dsa-560
http://www.gentoo.org/security/en/glsa/glsa-200409-34.xml
http://www.gentoo.org/security/en/glsa/glsa-200502-07.xml
http://www.kb.cert.org/vuls/id/537878 US Government Resource
http://www.mandriva.com/security/advisories?name=MDKSA-2004:098
http://www.novell.com/linux/security/advisories/2004_34_xfree86_libs_xshared.html
http://www.redhat.com/archives/fedora-legacy-announce/2006-January/msg00001.html
http://www.redhat.com/support/errata/RHSA-2004-537.html
http://www.redhat.com/support/errata/RHSA-2005-004.html
http://www.securityfocus.com/archive/1/434715/100/0/threaded
http://www.securityfocus.com/bid/11196 Patch Vendor Advisory
http://www.us-cert.gov/cas/techalerts/TA05-136A.html US Government Resource
http://www.vupen.com/english/advisories/2006/1914
https://exchange.xforce.ibmcloud.com/vulnerabilities/17416
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11796
https://usn.ubuntu.com/27-1/
cvelogic Threat Intelligence