Executive Summary
| Informations | |||
|---|---|---|---|
| Name | CVE-2008-6079 | First vendor Publication | 2009-02-06 |
| Vendor | Cve | Last vendor Modification | 2024-11-21 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 10 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Low |
| Cvss Expoit Score | 10 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| imlib2 before 1.4.2 allows context-dependent attackers to have an unspecified impact via a crafted (1) ARGB, (2) BMP, (3) JPEG, (4) LBM, (5) PNM, (6) TGA, or (7) XPM file, related to "several heap and stack based buffer overflows - partly due to integer overflows." |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-6079 |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:13415 | |||
| Oval ID: | oval:org.mitre.oval:def:13415 | ||
| Title: | DSA-2029-1 imlib2 -- several | ||
| Description: | It was discovered that imlib2, a library to load and process several image formats, did not properly process various image file types. Several heap and stack based buffer overflows - partly due to integer overflows - in the ARGB, BMP, JPEG, LBM, PNM, TGA and XPM loaders can lead to the execution of arbitrary code via crafted image files. For the stable distribution, this problem has been fixed in version 1.4.0-1.2+lenny1. For the testing distribution, this problem has been fixed in version 1.4.2-1. For the unstable distribution, this problem has been fixed in version 1.4.2-1. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-2029-1 CVE-2008-6079 | Version: | 5 |
| Platform(s): | Debian GNU/Linux 5.0 | Product(s): | imlib2 |
| Definition Synopsis: | |||
| Definition Id: oval:org.mitre.oval:def:6745 | |||
| Oval ID: | oval:org.mitre.oval:def:6745 | ||
| Title: | DSA-2029 imlib2 -- several vulnerabilities | ||
| Description: | It was discovered that imlib2, a library to load and process several image formats, did not properly process various image file types. Several heap and stack based buffer overflows - partly due to integer overflows - in the ARGB, BMP, JPEG, LBM, PNM, TGA and XPM loaders can lead to the execution of arbitrary code via crafted image files. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-2029 CVE-2008-6079 | Version: | 5 |
| Platform(s): | Debian GNU/Linux 5.0 | Product(s): | imlib2 |
| Definition Synopsis: | |||
| |||
CPE : Common Platform Enumeration
OpenVAS Exploits
| Date | Description |
|---|---|
| 2010-07-06 | Name : Mandriva Update for imlib2 MDVSA-2010:127 (imlib2) File : nvt/gb_mandriva_MDVSA_2010_127.nasl |
| 2010-04-29 | Name : Mandriva Update for kde4-style-iaora MDVA-2010:127 (kde4-style-iaora) File : nvt/gb_mandriva_MDVA_2010_127.nasl |
| 2010-04-21 | Name : Debian Security Advisory DSA 2029-1 (imlib2) File : nvt/deb_2029_1.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 49259 | imlib2 Multiple Unspecified Issues |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2010-07-30 | Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2010-127.nasl - Type : ACT_GATHER_INFO |
| 2010-04-06 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-2029.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
| Date | Informations |
|---|---|
| 2024-11-28 23:12:18 |
|
| 2024-11-28 12:17:30 |
|
| 2021-05-04 12:08:40 |
|
| 2021-04-22 01:09:01 |
|
| 2020-05-24 01:05:17 |
|
| 2020-05-23 00:22:52 |
|
| 2017-08-08 09:24:38 |
|
| 2016-04-26 18:15:19 |
|
| 2014-02-17 10:47:53 |
|
| 2013-05-11 00:34:56 |
|
