ID CVE-2009-1570
Summary Integer overflow in the ReadImage function in plug-ins/file-bmp/bmp-read.c in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a BMP file with crafted width and height values that trigger a heap-based buffer overflow.
References
Vulnerable Configurations
  • cpe:2.3:a:gimp:gimp:2.6.7:*:*:*:*:*:*:*
    cpe:2.3:a:gimp:gimp:2.6.7:*:*:*:*:*:*:*
CVSS
Base: 9.3 (as of 10-10-2018 - 19:37)
Impact:
Exploitability:
CWE CWE-189
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:C/I:C/A:C
oval via4
accepted 2010-03-01T04:00:17.105-05:00
class vulnerability
contributors
name Pai Peng
organization Hewlett-Packard
definition_extensions
  • comment Solaris 10 (SPARC) is installed
    oval oval:org.mitre.oval:def:1440
  • comment Solaris 10 (x86) is installed
    oval oval:org.mitre.oval:def:1926
description Integer overflow in the ReadImage function in plug-ins/file-bmp/bmp-read.c in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a BMP file with crafted width and height values that trigger a heap-based buffer overflow.
family unix
id oval:org.mitre.oval:def:8290
status accepted
submitted 2010-01-19T17:52:34.000-05:00
title An Integer Overflow Vulnerability in GIMP(1) May Lead to Denial of Service (DoS) or Execution of Arbitrary Code
version 31
redhat via4
advisories
  • rhsa
    id RHSA-2011:0837
  • rhsa
    id RHSA-2011:0838
rpms
  • gimp-1:2.0.5-7.0.7.el4.1
  • gimp-devel-1:2.0.5-7.0.7.el4.1
  • gimp-2:2.2.13-2.0.7.el5_6.2
  • gimp-devel-2:2.2.13-2.0.7.el5_6.2
  • gimp-libs-2:2.2.13-2.0.7.el5_6.2
refmap via4
bid 37006
bugtraq 20091112 Secunia Research: Gimp BMP Image Parsing Integer Overflow Vulnerability
confirm http://git.gnome.org/cgit/gimp/commit/?h=gimp-2-6&id=df2b0aca2e7cdb95ebfd3454c65aaba0a83e9bbe
gentoo GLSA-201209-23
misc
osvdb 59930
secunia
  • 37232
  • 50737
suse SUSE-SR:2010:009
vupen
  • ADV-2009-3228
  • ADV-2009-3564
  • ADV-2010-1021
xf gimp-readimage-bo(54254)
Last major update 10-10-2018 - 19:37
Published 13-11-2009 - 15:30
Back to Top