CVE-2006-4519

high

Description

Multiple integer overflows in the image loader plug-ins in GIMP before 2.2.16 allow user-assisted remote attackers to execute arbitrary code via crafted length values in (1) DICOM, (2) PNM, (3) PSD, (4) PSP, (5) Sun RAS, (6) XBM, and (7) XWD files.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10842

https://exchange.xforce.ibmcloud.com/vulnerabilities/35308

http://www.ubuntu.com/usn/usn-494-1

http://www.securitytracker.com/id?1018349

http://www.securityfocus.com/bid/24835

http://www.redhat.com/support/errata/RHSA-2007-0513.html

http://www.debian.org/security/2007/dsa-1335

http://security.gentoo.org/glsa/glsa-200707-09.xml

http://bugzilla.gnome.org/show_bug.cgi?id=451379

Details

Source: Mitre, NVD

Published: 2007-07-10

Updated: 2022-02-07

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Severity: High

Detections

Analytics