Aggregates CVE and security vulnerability intelligence across all windowmaker-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues mainly involve vendor risk buffer overflow and vendor risk denial of service and related problems; some flaws may lead to vendor impact application crash and vendor impact memory corruption.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2004-2714 | Unspecified vulnerability in Window Maker 0.80.2 and earlier allows attackers to perform unknown actions via format string specifiers in a font specification in WMGLOBAL, probably a format string vulnerability. | [email protected] | 6.0 | 0.67% | 2004-12-31 | 2026-04-16 |
| CVE-2002-1277 | Buffer overflow in Window Maker (wmaker) 0.80.0 and earlier may allow remote attackers to execute arbitrary code via a certain image file that is not properly handled when Window Maker uses width and height information to allocate a buffer. | [email protected] | 7.5 | 5.79% | 2002-11-12 | 2026-04-16 |
| CVE-2001-1027 | Buffer overflow in WindowMaker (aka wmaker) 0.64 and earlier allows remote attackers to execute arbitrary code via a long window title. | [email protected] | 10.0 | 23.72% | 2001-08-31 | 2026-04-16 |
| CVE-2000-0018 | wmmon in FreeBSD allows local users to gain privileges via the .wmmonrc configuration file. | [email protected] | 7.2 | 0.38% | 1999-12-22 | 2026-04-16 |
| CVE-2000-0026 | Buffer overflow in UnixWare i2odialogd daemon allows remote attackers to gain root access via a long username/password authorization string. | [email protected] | 10.0 | 8.01% | 1999-12-21 | 2026-04-16 |
| CVE-1999-1064 | Multiple buffer overflows in WindowMaker 0.52 through 0.60.0 allow attackers to cause a denial of service and possibly execute arbitrary commands by executing WindowMaker with a long program name (argv[0]). | [email protected] | 10.0 | 0.63% | 1999-08-22 | 2026-04-16 |