Executive Summary
Summary | |
---|---|
Title | Sun Alert 103170 Multiple Security Vulnerabilities Within the GIMP Plugins |
Informations | |||
---|---|---|---|
Name | SUN-103170 | First vendor Publication | 2007-12-18 |
Vendor | Sun | Last vendor Modification | 2007-12-19 |
Severity (Vendor) | N/A | Revision | N/A |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P) | |||
---|---|---|---|
Cvss Base Score | 7.5 | Attack Range | Network |
Cvss Impact Score | 6.4 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Product: Solaris 10 Operating System Multiple security vulnerabilities exist within the plugins used by the Gnome Image manipulation and paint program (gimp(1)). These security vulnerabilities which are within the sunras, psd, and pcx plugins of (gimp(1)), may allow a remote unprivileged user the ability to crash (gimp(1)) and execute arbitrary code with the privileges of a local user when (gimp(1)) loads a carefully crafted Sun Raster image file, PSD image file, or PCX image file. These issues are described in the following documents:
Avoidance: Patch, Workaround State: Workaround First released: 17-Dec-2007 |
Original Source
Url : http://blogs.sun.com/security/entry/sun_alert_103170_multiple_security |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
50 % | CWE-787 | Out-of-bounds Write (CWE/SANS Top 25) |
50 % | CWE-190 | Integer Overflow or Wraparound (CWE/SANS Top 25) |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:10054 | |||
Oval ID: | oval:org.mitre.oval:def:10054 | ||
Title: | Stack-based buffer overflow in the set_color_table function in sunras.c in the SUNRAS plugin in Gimp 2.2.14 allows user-assisted remote attackers to execute arbitrary code via a crafted RAS file. | ||
Description: | Stack-based buffer overflow in the set_color_table function in sunras.c in the SUNRAS plugin in Gimp 2.2.14 allows user-assisted remote attackers to execute arbitrary code via a crafted RAS file. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2007-2356 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:11081 | |||
Oval ID: | oval:org.mitre.oval:def:11081 | ||
Title: | Buffer overflow in the kimgio library for KDE 3.4.0 allows remote attackers to execute arbitrary code via a crafted PCX image file. | ||
Description: | Buffer overflow in the kimgio library for KDE 3.4.0 allows remote attackers to execute arbitrary code via a crafted PCX image file. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2005-1046 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:11276 | |||
Oval ID: | oval:org.mitre.oval:def:11276 | ||
Title: | Integer overflow in the seek_to_and_unpack_pixeldata function in the psd.c plugin in Gimp 2.2.15 allows remote attackers to execute arbitrary code via a crafted PSD file that contains a large (1) width or (2) height value. | ||
Description: | Integer overflow in the seek_to_and_unpack_pixeldata function in the psd.c plugin in Gimp 2.2.15 allows remote attackers to execute arbitrary code via a crafted PSD file that contains a large (1) width or (2) height value. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2007-2949 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 Red Hat Enterprise Linux 4 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 5 CentOS Linux 5 Oracle Linux 5 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:19721 | |||
Oval ID: | oval:org.mitre.oval:def:19721 | ||
Title: | DSA-1335-1 gimp | ||
Description: | Several remote vulnerabilities have been discovered in Gimp, the GNU Image Manipulation Program, which might lead to the execution of arbitrary code. | ||
Family: | unix | Class: | patch |
Reference(s): | DSA-1335-1 CVE-2006-4519 CVE-2007-2949 | Version: | 5 |
Platform(s): | Debian GNU/Linux 4.0 | Product(s): | gimp |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:20465 | |||
Oval ID: | oval:org.mitre.oval:def:20465 | ||
Title: | DSA-1301-1 gimp | ||
Description: | A buffer overflow has been identified in Gimp's SUNRAS plugin in versions prior to 2.2.15. This bug could allow an attacker to execute arbitrary code on the victim's computer by inducing the victim to open a specially crafted RAS file. | ||
Family: | unix | Class: | patch |
Reference(s): | DSA-1301-1 CVE-2007-2356 | Version: | 5 |
Platform(s): | Debian GNU/Linux 4.0 | Product(s): | gimp |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:21752 | |||
Oval ID: | oval:org.mitre.oval:def:21752 | ||
Title: | ELSA-2007:0343: gimp security update (Moderate) | ||
Description: | Stack-based buffer overflow in the set_color_table function in sunras.c in the SUNRAS plugin in Gimp 2.2.14 allows user-assisted remote attackers to execute arbitrary code via a crafted RAS file. | ||
Family: | unix | Class: | patch |
Reference(s): | ELSA-2007:0343-02 CVE-2007-2356 | Version: | 6 |
Platform(s): | Oracle Linux 5 | Product(s): | gimp |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:5772 | |||
Oval ID: | oval:org.mitre.oval:def:5772 | ||
Title: | PSD Plugin of Gimp vulnerability | ||
Description: | Integer overflow in the seek_to_and_unpack_pixeldata function in the psd.c plugin in Gimp 2.2.15 allows remote attackers to execute arbitrary code via a crafted PSD file that contains a large (1) width or (2) height value. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2007-2949 | Version: | 1 |
Platform(s): | Sun Solaris 9 Sun Solaris 10 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:5802 | |||
Oval ID: | oval:org.mitre.oval:def:5802 | ||
Title: | PCX Plugin of Gimp Vulnerability | ||
Description: | Buffer overflow in the kimgio library for KDE 3.4.0 allows remote attackers to execute arbitrary code via a crafted PCX image file. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2005-1046 | Version: | 1 |
Platform(s): | Sun Solaris 9 Sun Solaris 10 | Product(s): | |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:5960 | |||
Oval ID: | oval:org.mitre.oval:def:5960 | ||
Title: | SUNRAS Plugin of Gimp Vulnerability | ||
Description: | Stack-based buffer overflow in the set_color_table function in sunras.c in the SUNRAS plugin in Gimp 2.2.14 allows user-assisted remote attackers to execute arbitrary code via a crafted RAS file. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2007-2356 | Version: | 1 |
Platform(s): | Sun Solaris 9 Sun Solaris 10 | Product(s): | |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2009-10-10 | Name : SLES9: Security update for kdelibs3 File : nvt/sles9p5014846.nasl |
2009-09-23 | Name : Solaris Update for GNOME 2.6.0 122212-33 File : nvt/gb_solaris_122212_33.nasl |
2009-09-23 | Name : Solaris Update for GNOME Desktop 122213-33 File : nvt/gb_solaris_122213_33.nasl |
2009-06-03 | Name : Solaris Update for GNOME 2.6.0 122212-32 File : nvt/gb_solaris_122212_32.nasl |
2009-06-03 | Name : Solaris Update for GNOME Desktop 122213-32 File : nvt/gb_solaris_122213_32.nasl |
2009-04-09 | Name : Mandriva Update for gimp MDKSA-2007:108 (gimp) File : nvt/gb_mandriva_MDKSA_2007_108.nasl |
2009-04-09 | Name : Mandriva Update for gimp MDKSA-2007:170 (gimp) File : nvt/gb_mandriva_MDKSA_2007_170.nasl |
2009-03-23 | Name : Ubuntu Update for gimp vulnerability USN-467-1 File : nvt/gb_ubuntu_USN_467_1.nasl |
2009-03-23 | Name : Ubuntu Update for gimp vulnerability USN-480-1 File : nvt/gb_ubuntu_USN_480_1.nasl |
2008-09-24 | Name : Gentoo Security Advisory GLSA 200504-22 (KDE) File : nvt/glsa_200504_22.nasl |
2008-09-24 | Name : Gentoo Security Advisory GLSA 200705-08 (gimp) File : nvt/glsa_200705_08.nasl |
2008-09-24 | Name : Gentoo Security Advisory GLSA 200707-09 (gimp) File : nvt/glsa_200707_09.nasl |
2008-09-04 | Name : FreeBSD Ports: kdelibs File : nvt/freebsd_kdelibs.nasl |
2008-01-17 | Name : Debian Security Advisory DSA 1301-1 (gimp) File : nvt/deb_1301_1.nasl |
2008-01-17 | Name : Debian Security Advisory DSA 714-1 (kdelibs) File : nvt/deb_714_1.nasl |
2008-01-17 | Name : Debian Security Advisory DSA 1335-1 (gimp) File : nvt/deb_1335_1.nasl |
0000-00-00 | Name : Slackware Advisory SSA:2007-222-01 gimp File : nvt/esoft_slk_ssa_2007_222_01.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
37804 | GIMP psd.c seek_to_and_unpack_pixeldata Function PSD Handling Overflow |
35417 | GIMP SUNRAS Plugin RAS File Handling set_color_table() Function Overflow |
15478 | KDE kdelibs kimgio Component PCX Image Processing Overflow |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2007-0513.nasl - Type : ACT_GATHER_INFO |
2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2007-0343.nasl - Type : ACT_GATHER_INFO |
2012-09-24 | Name : The remote Fedora Core host is missing a security update. File : fedora_2005-350.nasl - Type : ACT_GATHER_INFO |
2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20070926_gimp_on_SL5_x.nasl - Type : ACT_GATHER_INFO |
2012-08-01 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20070521_gimp_on_SL5_x.nasl - Type : ACT_GATHER_INFO |
2007-12-13 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_gimp-3962.nasl - Type : ACT_GATHER_INFO |
2007-12-13 | Name : The remote SuSE 10 host is missing a security-related patch. File : suse_gimp-3283.nasl - Type : ACT_GATHER_INFO |
2007-11-10 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-494-1.nasl - Type : ACT_GATHER_INFO |
2007-11-10 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-480-1.nasl - Type : ACT_GATHER_INFO |
2007-11-10 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-467-1.nasl - Type : ACT_GATHER_INFO |
2007-10-17 | Name : The remote openSUSE host is missing a security update. File : suse_gimp-unstable-3281.nasl - Type : ACT_GATHER_INFO |
2007-10-17 | Name : The remote openSUSE host is missing a security update. File : suse_gimp-3949.nasl - Type : ACT_GATHER_INFO |
2007-10-17 | Name : The remote openSUSE host is missing a security update. File : suse_gimp-3282.nasl - Type : ACT_GATHER_INFO |
2007-10-03 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2007-0513.nasl - Type : ACT_GATHER_INFO |
2007-09-26 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2007-0513.nasl - Type : ACT_GATHER_INFO |
2007-08-28 | Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2007-170.nasl - Type : ACT_GATHER_INFO |
2007-08-13 | Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2007-222-01.nasl - Type : ACT_GATHER_INFO |
2007-07-27 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200707-09.nasl - Type : ACT_GATHER_INFO |
2007-07-23 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-1335.nasl - Type : ACT_GATHER_INFO |
2007-06-14 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-1301.nasl - Type : ACT_GATHER_INFO |
2007-05-25 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2007-0343.nasl - Type : ACT_GATHER_INFO |
2007-05-25 | Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2007-108.nasl - Type : ACT_GATHER_INFO |
2007-05-25 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2007-0343.nasl - Type : ACT_GATHER_INFO |
2007-05-10 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200705-08.nasl - Type : ACT_GATHER_INFO |
2006-07-05 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2005-393.nasl - Type : ACT_GATHER_INFO |
2006-01-15 | Name : The remote Ubuntu host is missing one or more security-related patches. File : ubuntu_USN-114-1.nasl - Type : ACT_GATHER_INFO |
2005-07-13 | Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_06404241b30611d9a7880001020eed82.nasl - Type : ACT_GATHER_INFO |
2005-05-17 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2005-393.nasl - Type : ACT_GATHER_INFO |
2005-05-17 | Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2005-085.nasl - Type : ACT_GATHER_INFO |
2005-04-27 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-714.nasl - Type : ACT_GATHER_INFO |
2005-04-25 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-200504-22.nasl - Type : ACT_GATHER_INFO |