FKIE_CVE-2008-1928
Vulnerability from fkie_nvd - Published: 2008-04-24 05:05 - Updated: 2026-06-16 22:52
Severity
Summary
Buffer overflow in Imager 0.42 through 0.63 allows attackers to cause a denial of service (crash) via an image based fill in which the number of input channels is different from the number of output channels.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| imager | imager | 0.42 | |
| imager | imager | 0.43 | |
| imager | imager | 0.43_03 | |
| imager | imager | 0.44 | |
| imager | imager | 0.44_01 | |
| imager | imager | 0.45 | |
| imager | imager | 0.45_02 | |
| imager | imager | 0.46 | |
| imager | imager | 0.47 | |
| imager | imager | 0.48 | |
| imager | imager | 0.49 | |
| imager | imager | 0.49_01 | |
| imager | imager | 0.50 | |
| imager | imager | 0.51 | |
| imager | imager | 0.51_01 | |
| imager | imager | 0.51_02 | |
| imager | imager | 0.51_03 | |
| imager | imager | 0.52 | |
| imager | imager | 0.53 | |
| imager | imager | 0.55 | |
| imager | imager | 0.56 | |
| imager | imager | 0.57 | |
| imager | imager | 0.58 | |
| imager | imager | 0.59 | |
| imager | imager | 0.60 | |
| imager | imager | 0.61 | |
| imager | imager | 0.62 | |
| imager | imager | 0.63 |
{
"affected": [
{
"affectedData": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"source": "cve@mitre.org"
}
],
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:imager:imager:0.42:*:*:*:*:*:*:*",
"matchCriteriaId": "EBA093A0-6344-48FD-B76A-DB3E0337B7C1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.43:*:*:*:*:*:*:*",
"matchCriteriaId": "1F5446B7-2610-4E29-AB9E-89F4C2B2409F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.43_03:*:*:*:*:*:*:*",
"matchCriteriaId": "CB49EF29-6D69-402C-8032-7F780A1A4B34",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.44:*:*:*:*:*:*:*",
"matchCriteriaId": "FDC38B0A-7F1A-4266-9ECA-16E24E29EABD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.44_01:*:*:*:*:*:*:*",
"matchCriteriaId": "1D927EC9-02AC-47B5-9617-369D3AEC98ED",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.45:*:*:*:*:*:*:*",
"matchCriteriaId": "A74E4BBF-9EFA-49BE-9A97-B795BD4713E1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.45_02:*:*:*:*:*:*:*",
"matchCriteriaId": "DB693EB6-BB2C-42BD-81D0-5D41A3DDA3FF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.46:*:*:*:*:*:*:*",
"matchCriteriaId": "BAD2AE19-8A39-4414-834E-B262FBBB6491",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.47:*:*:*:*:*:*:*",
"matchCriteriaId": "ED1E5DD6-B58B-46A6-BA49-0ED3683BE8D7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.48:*:*:*:*:*:*:*",
"matchCriteriaId": "443B271D-CFE1-4F8A-8B5B-2BDDC19B6B14",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.49:*:*:*:*:*:*:*",
"matchCriteriaId": "3AF32B50-FB3C-45A2-B757-27948CD26F13",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.49_01:*:*:*:*:*:*:*",
"matchCriteriaId": "AF446B22-E726-45C7-8030-1CA456B5C334",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.50:*:*:*:*:*:*:*",
"matchCriteriaId": "C899B130-F05D-4E48-9B15-899DB88CF4C9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.51:*:*:*:*:*:*:*",
"matchCriteriaId": "CA0EBE7F-46E3-4AF1-A5DF-A1B51CDA8E51",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.51_01:*:*:*:*:*:*:*",
"matchCriteriaId": "577ADA2C-39F9-4249-A6BB-4916738B536C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.51_02:*:*:*:*:*:*:*",
"matchCriteriaId": "541DE153-A1D1-4D1A-85C6-0C1EDAF130D2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.51_03:*:*:*:*:*:*:*",
"matchCriteriaId": "32755E64-A5EE-4BEF-B897-5972A56C62C6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.52:*:*:*:*:*:*:*",
"matchCriteriaId": "17162C2C-4471-441B-9BF3-E472E1E72ED4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.53:*:*:*:*:*:*:*",
"matchCriteriaId": "AF59BA5C-57E7-4756-87BE-FE3D7AB8662F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.55:*:*:*:*:*:*:*",
"matchCriteriaId": "A2D652EA-BE60-43ED-8610-824D81874204",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.56:*:*:*:*:*:*:*",
"matchCriteriaId": "3A488357-C9FC-42F1-8E21-46C0C9BB47F8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.57:*:*:*:*:*:*:*",
"matchCriteriaId": "83426098-1258-421E-AA8A-135BBBDD9A0D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.58:*:*:*:*:*:*:*",
"matchCriteriaId": "D68C583B-F016-48CE-8939-4A6243CB9C83",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.59:*:*:*:*:*:*:*",
"matchCriteriaId": "36018499-E36F-435A-82BD-15AE7A77E54F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.60:*:*:*:*:*:*:*",
"matchCriteriaId": "18E37D39-A695-4A40-A21A-42DE81A54F7E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.61:*:*:*:*:*:*:*",
"matchCriteriaId": "A2F1EAC7-32C8-4930-BD0B-ABEF36133B0D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.62:*:*:*:*:*:*:*",
"matchCriteriaId": "593C9221-813D-4952-BBFF-8B0C6F541915",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:imager:imager:0.63:*:*:*:*:*:*:*",
"matchCriteriaId": "F60537CB-3D82-4A9D-B9E1-8AAD80C4DE22",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in Imager 0.42 through 0.63 allows attackers to cause a denial of service (crash) via an image based fill in which the number of input channels is different from the number of output channels."
},
{
"lang": "es",
"value": "Desbordamiento de b\u00fafer en Imager en la versi\u00f3n 0.42 a la 0.63, permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda) a trav\u00e9s de una imagen \"based fill\" en la que el n\u00famero de canales de entrada es distinto del n\u00famero de canales de salida."
}
],
"id": "CVE-2008-1928",
"lastModified": "2026-06-16T22:52:46.300",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
]
},
"published": "2008-04-24T05:05:00.000",
"references": [
{
"source": "cve@mitre.org",
"url": "http://imager.perl.org/i/release064/Imager_0_64"
},
{
"source": "cve@mitre.org",
"url": "http://rt.cpan.org/Public/Bug/Display.html?id=35324"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/30011"
},
{
"source": "cve@mitre.org",
"url": "http://secunia.com/advisories/30030"
},
{
"source": "cve@mitre.org",
"url": "http://www.securityfocus.com/bid/28980"
},
{
"source": "cve@mitre.org",
"url": "http://www.vupen.com/english/advisories/2008/1387/references"
},
{
"source": "cve@mitre.org",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41986"
},
{
"source": "cve@mitre.org",
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00569.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://imager.perl.org/i/release064/Imager_0_64"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://rt.cpan.org/Public/Bug/Display.html?id=35324"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/30011"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://secunia.com/advisories/30030"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/28980"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.vupen.com/english/advisories/2008/1387/references"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41986"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00569.html"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-119"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…