The MITRE CVE dictionary describes this issue as:
Multiple integer overflows in (1) the xpmParseColors function in parse.c, (2) XpmCreateImageFromXpmImage, (3) CreateXImage, (4) ParsePixels, and (5) ParseAndPutPixels for libXpm before 6.8.1 may allow remote attackers to execute arbitrary code via a malformed XPM image file.
Find out more about CVE-2004-0688 from the
MITRE CVE dictionary dictionary and
Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.