[Forgot Password]
Login  Register Subscribe

23631

 
 

119105

 
 

98250

 
 

909

 
 

79281

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2008-5262

Date: (C)2009-01-13   (M)2017-11-18 


Multiple stack-based buffer overflows in the iGetHdrHeader function in src-IL/src/il_hdr.c in DevIL 1.7.4 allow context-dependent attackers to execute arbitrary code via a crafted Radiance RGBE file.

CVSS Score: 7.5Access Vector: NETWORK
Exploit Score: 10.0Access Complexity: LOW
Impact Score: 6.4Authentication: NONE
 Confidentiality: PARTIAL
 Integrity: PARTIAL
 Availability: PARTIAL





Reference:
BID-33231
SECUNIA-33470
SECUNIA-33637
SECUNIA-33801
DSA-1717
FEDORA-2009-0856
http://secunia.com/secunia_research/2008-59/

CWE    1
CWE-119
OVAL    4
oval:org.secpod.oval:def:101868
oval:org.secpod.oval:def:102501
oval:org.mitre.oval:def:7190
oval:org.secpod.oval:def:600466
...

© 2013 SecPod Technologies