ID CVE-2006-4519
Summary Multiple integer overflows in the image loader plug-ins in GIMP before 2.2.16 allow user-assisted remote attackers to execute arbitrary code via crafted length values in (1) DICOM, (2) PNM, (3) PSD, (4) PSP, (5) Sun RAS, (6) XBM, and (7) XWD files.
References
Vulnerable Configurations
  • cpe:2.3:a:the_gimp_team:gimp:2.2.3:*:*:*:*:*:*:*
    cpe:2.3:a:the_gimp_team:gimp:2.2.3:*:*:*:*:*:*:*
  • cpe:2.3:a:the_gimp_team:gimp:2.2.4:*:*:*:*:*:*:*
    cpe:2.3:a:the_gimp_team:gimp:2.2.4:*:*:*:*:*:*:*
  • cpe:2.3:a:the_gimp_team:gimp:2.2.6:*:*:*:*:*:*:*
    cpe:2.3:a:the_gimp_team:gimp:2.2.6:*:*:*:*:*:*:*
  • cpe:2.3:a:the_gimp_team:gimp:2.2.8:*:*:*:*:*:*:*
    cpe:2.3:a:the_gimp_team:gimp:2.2.8:*:*:*:*:*:*:*
  • cpe:2.3:a:the_gimp_team:gimp:2.2.9:*:*:*:*:*:*:*
    cpe:2.3:a:the_gimp_team:gimp:2.2.9:*:*:*:*:*:*:*
  • cpe:2.3:a:the_gimp_team:gimp:2.2.10:*:*:*:*:*:*:*
    cpe:2.3:a:the_gimp_team:gimp:2.2.10:*:*:*:*:*:*:*
  • cpe:2.3:a:the_gimp_team:gimp:2.2.11:*:*:*:*:*:*:*
    cpe:2.3:a:the_gimp_team:gimp:2.2.11:*:*:*:*:*:*:*
  • cpe:2.3:a:the_gimp_team:gimp:2.2.12:*:*:*:*:*:*:*
    cpe:2.3:a:the_gimp_team:gimp:2.2.12:*:*:*:*:*:*:*
  • cpe:2.3:a:the_gimp_team:gimp:2.2.14:*:*:*:*:*:*:*
    cpe:2.3:a:the_gimp_team:gimp:2.2.14:*:*:*:*:*:*:*
  • cpe:2.3:a:the_gimp_team:gimp:2.2.15:*:*:*:*:*:*:*
    cpe:2.3:a:the_gimp_team:gimp:2.2.15:*:*:*:*:*:*:*
CVSS
Base: 6.8 (as of 17-10-2018 - 21:37)
Impact:
Exploitability:
CWE CWE-189
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:M/Au:N/C:P/I:P/A:P
oval via4
accepted 2013-04-29T04:09:16.111-04:00
class vulnerability
contributors
  • name Aharon Chernin
    organization SCAP.com, LLC
  • name Dragos Prisaca
    organization G2, Inc.
definition_extensions
  • comment The operating system installed on the system is Red Hat Enterprise Linux 3
    oval oval:org.mitre.oval:def:11782
  • comment CentOS Linux 3.x
    oval oval:org.mitre.oval:def:16651
  • comment The operating system installed on the system is Red Hat Enterprise Linux 4
    oval oval:org.mitre.oval:def:11831
  • comment CentOS Linux 4.x
    oval oval:org.mitre.oval:def:16636
  • comment Oracle Linux 4.x
    oval oval:org.mitre.oval:def:15990
  • comment The operating system installed on the system is Red Hat Enterprise Linux 5
    oval oval:org.mitre.oval:def:11414
  • comment The operating system installed on the system is CentOS Linux 5.x
    oval oval:org.mitre.oval:def:15802
  • comment Oracle Linux 5.x
    oval oval:org.mitre.oval:def:15459
description Multiple integer overflows in the image loader plug-ins in GIMP before 2.2.16 allow user-assisted remote attackers to execute arbitrary code via crafted length values in (1) DICOM, (2) PNM, (3) PSD, (4) PSP, (5) Sun RAS, (6) XBM, and (7) XWD files.
family unix
id oval:org.mitre.oval:def:10842
status accepted
submitted 2010-07-09T03:56:16-04:00
title Multiple integer overflows in the image loader plug-ins in GIMP before 2.2.16 allow user-assisted remote attackers to execute arbitrary code via crafted length values in (1) DICOM, (2) PNM, (3) PSD, (4) PSP, (5) Sun RAS, (6) XBM, and (7) XWD files.
version 25
redhat via4
advisories
rhsa
id RHSA-2007:0513
rpms
  • gimp-1:1.2.3-20.9.el3
  • gimp-devel-1:1.2.3-20.9.el3
  • gimp-perl-1:1.2.3-20.9.el3
  • gimp-1:2.0.5-7.0.7.el4
  • gimp-devel-1:2.0.5-7.0.7.el4
  • gimp-2:2.2.13-2.0.7.el5
  • gimp-devel-2:2.2.13-2.0.7.el5
  • gimp-libs-2:2.2.13-2.0.7.el5
refmap via4
bid 24835
bugtraq 20070801 FLEA-2007-0038-1 gimp
confirm
debian DSA-1335
gentoo GLSA-200707-09
idefense 20070709 Multiple Vendor GIMP Multiple Integer Overflow Vulnerabilities
mandriva MDKSA-2007:170
osvdb
  • 42139
  • 42140
  • 42141
  • 42142
  • 42143
  • 42144
  • 42145
sectrack 1018349
secunia
  • 26132
  • 26215
  • 26240
  • 26575
  • 26939
ubuntu USN-494-1
vupen ADV-2007-2471
xf gimp-plugins-code-execution(35308)
Last major update 17-10-2018 - 21:37
Published 10-07-2007 - 18:30
Back to Top