Home Packages KEV Critical Insights Jobs Pricing

Loading…

Data from OSV.dev, CISA KEV, and FIRST EPSS.Sync status GitHub

CVE-2003-0924 — netpbm-free - insecure temporary files · VulnScope

CVE-2003-0924

netpbm-free - insecure temporary files

EPSS 0.10%

Description

netpbm 9.25 and earlier does not properly create temporary files, which allows local users to overwrite arbitrary files.

How to fix CVE-2003-0924

To remediate CVE-2003-0924, upgrade the affected package to a fixed version below.

Debian/netpbm-free—upgrade to 2:9.25-9 or later
Debian/netpbm-free—upgrade to 2:9.20-8.4 or later

Is CVE-2003-0924 being exploited?

Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.

Affected packages (2)

from 0, < 2:9.25-9
from 0, < 2:9.20-8.4

References (1)

ADVISORYsecurity-tracker.debian.org/tracker/CVE-2003-0924

Metadata

Published: 2/17/2004
Modified: 4/28/2026

Also known as:

DSA-426dsa
DEBIAN-CVE-2003-0924debian

Debian/netpbm-free

Debian/netpbm-free