[Forgot Password]
Login  Register Subscribe

23631

 
 

126941

 
 

98503

 
 

909

 
 

79321

 
 

109

Paid content will be excluded from the download.


Download | Alert*
CVE
view XML

CVE-2009-1570

Date: (C)2009-11-13   (M)2017-11-18 


Integer overflow in the ReadImage function in plug-ins/file-bmp/bmp-read.c in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a BMP file with crafted width and height values that trigger a heap-based buffer overflow.

CVSS Score: 9.3Access Vector: NETWORK
Exploit Score: 8.6Access Complexity: MEDIUM
Impact Score: 10.0Authentication: NONE
 Confidentiality: COMPLETE
 Integrity: COMPLETE
 Availability: COMPLETE





Reference:
http://www.securityfocus.com/archive/1/archive/1/507813/100/0/threaded
BID-37006
SECUNIA-37232
SECUNIA-50737
OSVDB-59930
ADV-2009-3228
ADV-2009-3564
ADV-2010-1021
GLSA-201209-23
RHSA-2011:0837
RHSA-2011:0838
SUSE-SR:2010:009
gimp-readimage-bo(54254)
http://git.gnome.org/cgit/gimp/commit/?h=gimp-2-6&id=df2b0aca2e7cdb95ebfd3454c65aaba0a83e9bbe
http://secunia.com/secunia_research/2009-42/
https://bugzilla.gnome.org/show_bug.cgi?id=600484

CPE    1
cpe:/a:gimp:gimp:2.6.7
CWE    1
CWE-189
OVAL    9
oval:org.secpod.oval:def:500110
oval:org.secpod.oval:def:201542
oval:org.secpod.oval:def:200613
oval:org.secpod.oval:def:300956
...

© 2013 SecPod Technologies