CVE-2005-2495

Multiple integer overflows in XFree86 before 4.3.0 allow user-assisted attackers to execute arbitrary code via a crafted pixmap image.

Published: 2005-09-15 Last update: 2026-04-16 Assigner: [email protected] Source: [email protected]
NVD Status:ModifiedCVE State: published
View at NVD, CVE.org, EUVD

CVE-2005-2495 is rated Moderate Risk (51.2/100): CVSS Medium severity, with medium exploitation likelihood (EPSS 4.26%). Review affected assets and schedule remediation.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Exploit prediction scoring system (EPSS) score for CVE-2005-2495

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2025-08-03 4.42% 4.26% -0.16%
2 2025-03-30 12.30% 4.42% -7.87%
3 2025-03-29 12.30%

Full EPSS history (8 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2005-2495

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
5.1 2.0 MEDIUM
AV:N/AC:H/Au:N/C:P/I:P/A:P Click to expand
Access vector (AV:N)
Can be exploited remotely over network reachability.
Access complexity (AC:H)
Exploitation requires uncommon or highly specific conditions.
Authentication (AU:N)
No authentication is required.
Confidentiality impact (C:P)
Partial confidentiality impact.
Integrity impact (I:P)
Partial integrity impact.
Availability impact (A:P)
Partial availability impact.
 4.9 6.4 [email protected]

Weakness enumeration for CVE-2005-2495

OS Trackers for CVE-2005-2495

vendor priority summary link
redhat high https://access.redhat.com/security/cve/CVE-2005-2495
ubuntu medium CVE-2005-2495 medium priority: Ubuntu including 1 source packages (xorg), 4 status rows across 4 suites (dapper, edgy, feisty, upstream): not-affected 3, needs-triage 1. https://ubuntu.com/security/CVE-2005-2495

Affected software / configurations for CVE-2005-2495

Vendor Product Version Raw CPE
xfree86_project xfree86 3.3.6 cpe:2.3:a:xfree86_project:xfree86:3.3.6:*:*:*:*:*:*:*
xfree86_project xfree86 4.0.0 cpe:2.3:a:xfree86_project:xfree86:4.0.0:*:*:*:*:*:*:*
xfree86_project xfree86 4.0.1 cpe:2.3:a:xfree86_project:xfree86:4.0.1:*:*:*:*:*:*:*
xfree86_project xfree86 4.0.2 cpe:2.3:a:xfree86_project:xfree86:4.0.2:*:*:*:*:*:*:*
xfree86_project xfree86 4.0.3 cpe:2.3:a:xfree86_project:xfree86:4.0.3:*:*:*:*:*:*:*
xfree86_project xfree86 4.1.0 cpe:2.3:a:xfree86_project:xfree86:4.1.0:*:*:*:*:*:*:*
xfree86_project xfree86 4.2.0 cpe:2.3:a:xfree86_project:xfree86:4.2.0:*:*:*:*:*:*:*
xfree86_project xfree86 4.2.1 cpe:2.3:a:xfree86_project:xfree86:4.2.1:*:*:*:*:*:*:*

References for CVE-2005-2495

URL Tags
ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2006.22/SCOSA-2006.22.txt
ftp://patches.sgi.com/support/free/security/advisories/20060403-01-U
http://marc.info/?l=bugtraq&m=112690609622266&w=2
http://secunia.com/advisories/16777 Vendor Advisory
http://secunia.com/advisories/16790 Vendor Advisory
http://secunia.com/advisories/17044 Vendor Advisory
http://secunia.com/advisories/17215 Vendor Advisory
http://secunia.com/advisories/17258 Vendor Advisory
http://secunia.com/advisories/17278 Vendor Advisory
http://secunia.com/advisories/19624 Vendor Advisory
http://secunia.com/advisories/19796 Vendor Advisory
http://secunia.com/advisories/21318 Vendor Advisory
http://securitytracker.com/id?1014887
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101926-1
http://sunsolve.sun.com/search/document.do?assetkey=1-26-101953-1
http://support.avaya.com/elmodocs2/security/ASA-2005-218.pdf
http://support.avaya.com/elmodocs2/security/ASA-2005-226.pdf
http://www.debian.org/security/2005/dsa-816
http://www.gentoo.org/security/en/glsa/glsa-200509-07.xml
http://www.kb.cert.org/vuls/id/102441 US Government Resource
http://www.mandriva.com/security/advisories?name=MDKSA-2005:164
http://www.novell.com/linux/security/advisories/2005_23_sr.html
http://www.novell.com/linux/security/advisories/2005_56_xserver.html
http://www.osvdb.org/19352
http://www.redhat.com/support/errata/RHSA-2005-329.html
http://www.redhat.com/support/errata/RHSA-2005-396.html Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2005-501.html Vendor Advisory
http://www.securityfocus.com/advisories/9285
http://www.securityfocus.com/advisories/9286
http://www.securityfocus.com/archive/1/427045/100/0/threaded
http://www.securityfocus.com/archive/1/442163/100/0/threaded
http://www.securityfocus.com/bid/14807
http://www.vupen.com/english/advisories/2006/3140 Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/22244
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1044
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9615
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A998
https://www.ubuntu.com/usn/usn-182-1/
cvelogic Threat Intelligence