CVE-2005-3737 - Buffer overflow in the SVG importer (style.cpp) of inkscape 0.41 through 0.42.2 might allow remote a

CVE-2005-3737

Summary

Buffer overflow in the SVG importer (style.cpp) of inkscape 0.41 through 0.42.2 might allow remote attackers to execute arbitrary code via a SVG file with long CSS style property values.

References

Vulnerable Configurations

cpe:2.3:a:inkscape:inkscape:0.41:*:*:*:*:*:*:*
cpe:2.3:a:inkscape:inkscape:0.41:*:*:*:*:*:*:*
cpe:2.3:a:inkscape:inkscape:0.42:*:*:*:*:*:*:*
cpe:2.3:a:inkscape:inkscape:0.42:*:*:*:*:*:*:*
cpe:2.3:a:inkscape:inkscape:0.42.1:*:*:*:*:*:*:*
cpe:2.3:a:inkscape:inkscape:0.42.1:*:*:*:*:*:*:*
cpe:2.3:a:inkscape:inkscape:0.42.2:*:*:*:*:*:*:*
cpe:2.3:a:inkscape:inkscape:0.42.2:*:*:*:*:*:*:*

CVSS

Base:	5.1 (as of 08-03-2011 - 02:27)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	HIGH	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:N/AC:H/Au:N/C:P/I:P/A:P

refmap via4

bid	15507
confirm	http://cvs.sourceforge.net/viewcvs.py/inkscape/inkscape/src/style.cpp?r1=1.110&r2=1.110.2.1
debian	DSA-916
gentoo	GLSA-200511-22
misc	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=330894
secunia	17651 17662 17778 17882
sreason	58
suse	SUSE-SR:2005:028
ubuntu	USN-217-1
vupen	ADV-2005-2511

Last major update

08-03-2011 - 02:27

Published

22-11-2005 - 00:03

Last modified

08-03-2011 - 02:27