Lucene search

[email protected]NVD:CVE-2011-1178

HistoryJun 06, 2011 - 7:55 p.m.

CVE-2011-1178

2011-06-0619:55:01

CWE-190

[email protected]

web.nvd.nist.gov

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.8

Confidence

High

EPSS

0.02

Percentile

88.8%

JSON

Multiple integer overflows in the load_image function in file-pcx.c in the Personal Computer Exchange (PCX) plugin in GIMP 2.6.x and earlier allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PCX image that triggers a heap-based buffer overflow.

Affected configurations

Nvd

Node

gimpgimpRange≤2.7.0

VendorProductVersionCPE
gimpgimp*cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
gimp	gimp	*	cpe:2.3:a:gimp:gimp::::::::

References

git.gnome.org/browse/gimp/commit/?id=a9671395f6573e90316a9d748588c5435216f6ce

secunia.com/advisories/50737

security.gentoo.org/glsa/glsa-201209-23.xml

securitytracker.com/id?1025586

www.mandriva.com/security/advisories?name=MDVSA-2011:110

www.redhat.com/support/errata/RHSA-2011-0837.html

www.redhat.com/support/errata/RHSA-2011-0838.html

www.securityfocus.com/bid/48057

bugzilla.redhat.com/show_bug.cgi?id=689831

exchange.xforce.ibmcloud.com/vulnerabilities/67787

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.8

Confidence

High

EPSS

0.02

Percentile

88.8%

JSON

Related for NVD:CVE-2011-1178

ubuntucve1 openvas17 cve1 prion1 debiancve1 cvelist1 nessus14 veracode1 centos2 oraclelinux2 redhat2 securityvulns1 gentoo1