{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/199729?format=json","vulnerability_id":"VCID-w9dy-n4ae-n3h7","summary":"Stack-based buffer overflow in xpm_extract_color (io-xpm.c) in the XPM image decoder for gtk+ 2.4.4 (gtk2) and earlier, and gdk-pixbuf before 0.22, may allow remote attackers to execute arbitrary code via a certain color string.  NOTE: this identifier is ONLY for gtk+.  It was incorrectly referenced in an advisory for a different issue (CVE-2004-0688).","aliases":[{"alias":"CVE-2004-0783"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/44678?format=json","purl":"pkg:deb/debian/gtk%2B2.0@2.4.9-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gtk%252B2.0@2.4.9-2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/1081660?format=json","purl":"pkg:deb/debian/gtk%2B2.0@2.6.4-3.2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-28eb-52qb-t3c9"},{"vulnerability":"VCID-479b-qrzu-cke1"},{"vulnerability":"VCID-54eq-zut7-bkdt"},{"vulnerability":"VCID-5yex-73gd-8udp"},{"vulnerability":"VCID-7nw5-2b6y-8qa7"},{"vulnerability":"VCID-ce2e-u1v9-juh7"},{"vulnerability":"VCID-j41b-9bqv-ufd4"},{"vulnerability":"VCID-kj3m-uv1w-j3h3"},{"vulnerability":"VCID-kw95-5daa-duhf"},{"vulnerability":"VCID-x1fh-b35f-y3ga"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gtk%252B2.0@2.6.4-3.2"},{"url":"http://public2.vulnerablecode.io/api/packages/44679?format=json","purl":"pkg:deb/debian/gtk%2B2.0@2.24.33-2%2Bdeb11u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gtk%252B2.0@2.24.33-2%252Bdeb11u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44677?format=json","purl":"pkg:deb/debian/gtk%2B2.0@2.24.33-2%2Bdeb12u1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gtk%252B2.0@2.24.33-2%252Bdeb12u1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44681?format=json","purl":"pkg:deb/debian/gtk%2B2.0@2.24.33-7?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gtk%252B2.0@2.24.33-7%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/44680?format=json","purl":"pkg:deb/debian/gtk%2B2.0@2.24.33-10?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gtk%252B2.0@2.24.33-10%3Fdistro=trixie"}],"affected_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/1081659?format=json","purl":"pkg:deb/debian/gtk%2B2.0@2.0.2-5woody2","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-28eb-52qb-t3c9"},{"vulnerability":"VCID-479b-qrzu-cke1"},{"vulnerability":"VCID-4xu9-zsdv-7ucd"},{"vulnerability":"VCID-54eq-zut7-bkdt"},{"vulnerability":"VCID-5yex-73gd-8udp"},{"vulnerability":"VCID-7nw5-2b6y-8qa7"},{"vulnerability":"VCID-ce2e-u1v9-juh7"},{"vulnerability":"VCID-j41b-9bqv-ufd4"},{"vulnerability":"VCID-kj3m-uv1w-j3h3"},{"vulnerability":"VCID-kw95-5daa-duhf"},{"vulnerability":"VCID-mbsz-xfhn-c3ax"},{"vulnerability":"VCID-mgk1-v4vv-abgj"},{"vulnerability":"VCID-w9dy-n4ae-n3h7"},{"vulnerability":"VCID-x1fh-b35f-y3ga"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/gtk%252B2.0@2.0.2-5woody2"},{"url":"http://public2.vulnerablecode.io/api/packages/371230?format=json","purl":"pkg:rpm/redhat/gdk-pixbuf@1:0.22.0-11.3?arch=3","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ba9-x2ud-n3gv"},{"vulnerability":"VCID-mbsz-xfhn-c3ax"},{"vulnerability":"VCID-mgk1-v4vv-abgj"},{"vulnerability":"VCID-w9dy-n4ae-n3h7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/gdk-pixbuf@1:0.22.0-11.3%3Farch=3"},{"url":"http://public2.vulnerablecode.io/api/packages/371231?format=json","purl":"pkg:rpm/redhat/gtk2@2.2.4-8?arch=1","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-1ba9-x2ud-n3gv"},{"vulnerability":"VCID-mbsz-xfhn-c3ax"},{"vulnerability":"VCID-mgk1-v4vv-abgj"},{"vulnerability":"VCID-w9dy-n4ae-n3h7"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:rpm/redhat/gtk2@2.2.4-8%3Farch=1"}],"references":[{"reference_url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0783.json","reference_id":"","reference_type":"","scores":[],"url":"https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2004-0783.json"},{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0783","reference_id":"","reference_type":"","scores":[{"value":"0.28699","scoring_system":"epss","scoring_elements":"0.96652","published_at":"2026-06-11T12:55:00Z"},{"value":"0.28699","scoring_system":"epss","scoring_elements":"0.96663","published_at":"2026-06-12T12:55:00Z"},{"value":"0.28699","scoring_system":"epss","scoring_elements":"0.96664","published_at":"2026-06-13T12:55:00Z"},{"value":"0.28699","scoring_system":"epss","scoring_elements":"0.96666","published_at":"2026-06-14T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2004-0783"},{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0783","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0783"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617284","reference_id":"1617284","reference_type":"","scores":[],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=1617284"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:447","reference_id":"RHSA-2004:447","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:447"},{"reference_url":"https://access.redhat.com/errata/RHSA-2004:466","reference_id":"RHSA-2004:466","reference_type":"","scores":[],"url":"https://access.redhat.com/errata/RHSA-2004:466"}],"weaknesses":[],"exploits":[],"severity_range_score":null,"exploitability":"0.5","weighted_severity":"0.3","risk_score":0.1,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-w9dy-n4ae-n3h7"}