Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2010-1526
HistoryAug 24, 2010 - 10:00 p.m.

CVE-2010-1526

2010-08-2422:00:01
CWE-189
[email protected]
web.nvd.nist.gov

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.4 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.0%

JSON

Multiple integer overflows in libgdiplus 2.6.7, as used in Mono, allow attackers to execute arbitrary code via (1) a crafted TIFF file, related to the gdip_load_tiff_image function in tiffcodec.c; (2) a crafted JPEG file, related to the gdip_load_jpeg_image_internal function in jpegcodec.c; or (3) a crafted BMP file, related to the gdip_read_bmp_image function in bmpcodec.c, leading to heap-based buffer overflows.

Affected configurations

NVD
Node
mono-projectlibgdiplusMatch2.6.7

Related

nessus 11
openvas 11
ubuntucve 1
gentoo 1
cve 1
fedora 3
securityvulns 2
debiancve 1
prion 1
ubuntu 1
altlinux 1
cvelist 1
nessus
nessus
SuSE 10 Security Update : libgdiplus (ZYPP Patch Number 7130)
2010-10-11 00:00:00
Fedora 14 : libgdiplus-2.6.7-3.fc14 (2010-13676)
2010-09-09 00:00:00
Mandriva Linux Security Advisory : libgdiplus (MDVSA-2010:166)
2010-09-01 00:00:00
openvas
openvas
Fedora Update for libgdiplus FEDORA-2010-13695
2010-09-10 00:00:00
Fedora Update for libgdiplus FEDORA-2010-13698
2010-09-10 00:00:00
Mandriva Update for libgdiplus MDVSA-2010:166 (libgdiplus)
2010-09-07 00:00:00
ubuntucve
ubuntucve
CVE-2010-1526
2010-08-24 00:00:00
gentoo
gentoo
Libgdiplus: Arbitrary code execution
2014-01-05 00:00:00
cve
cve
CVE-2010-1526
2010-08-24 22:00:01
fedora
fedora
[SECURITY] Fedora 13 Update: libgdiplus-2.6.7-2.fc13
2010-09-09 01:21:21
[SECURITY] Fedora 14 Update: libgdiplus-2.6.7-3.fc14
2010-09-09 04:33:07
[SECURITY] Fedora 12 Update: libgdiplus-2.4.2-4.fc12
2010-09-09 01:18:07
securityvulns
securityvulns
libgdiplus / Mono multiple integer overflows
2010-09-02 00:00:00
[ MDVSA-2010:166 ] libgdiplus
2010-09-02 00:00:00
debiancve
debiancve
CVE-2010-1526
2010-08-24 22:00:01
prion
prion
Integer overflow
2010-08-24 22:00:00
ubuntu
ubuntu
libgdiplus vulnerability
2010-09-29 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package libgdiplus version 2.6.7-alt2
2011-03-14 00:00:00
cvelist
cvelist
CVE-2010-1526
2010-08-24 20:00:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.4 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.0%

JSON
Related for NVD:CVE-2010-1526
nessus11openvas11ubuntucve1gentoo1cve1fedora3securityvulns2debiancve1prion1ubuntu1altlinux1cvelist1