Lucene search
Ubuntu.comUB:CVE-2012-3236HistoryJun 29, 2012 - 12:00 a.m.
CVE-2012-3236
2012-06-2900:00:00
ubuntu.com
ubuntu.com
10
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.008 Low
EPSS
Percentile
81.6%
fits-io.c in GIMP before 2.8.1 allows remote attackers to cause a denial of
service (NULL pointer dereference and application crash) via a malformed
XTENSION header of a .fit file, as demonstrated using a long string.
Bugs
Notes
| Author | Note |
|---|---|
| jdstrand | POC: http://www.reactionpenetrationtesting.co.uk/advisories/vuln.fit |
Related
nessus
nessus
SuSE 10 Security Update : Gimp (ZYPP Patch Number 8219)
2012-08-08 00:00:00
SuSE 11.1 Security Update : Gimp (SAT Patch Number 6542)
2013-01-25 00:00:00
debiancve
debiancve
CVE-2012-3236
2012-07-12 21:55:00
prion
prion
Null pointer dereference
2012-07-12 21:55:00
cve
cve
CVE-2012-3236
2012-07-12 21:55:00
exploitpack
exploitpack
GIMP 2.8.0 - .FIT File Format Denial of Service
2012-06-30 00:00:00
seebug
seebug
GIMP 2.8.0 FIT File Format DoS
2014-07-01 00:00:00
exploitdb
exploitdb
GIMP 2.8.0 - '.FIT' File Format Denial of Service
2012-06-30 00:00:00
openvas
openvas
Ubuntu Update for gimp USN-1559-1
2012-09-11 00:00:00
Ubuntu: Security Advisory (USN-1559-1)
2012-09-11 00:00:00
SuSE Update for gimp openSUSE-SU-2012:1080-1 (gimp)
2012-12-13 00:00:00
securityvulns
securityvulns
[USN-1559-1] GIMP vulnerabilities
2012-09-19 00:00:00
gimp multiple security vulnereabilities
2012-09-19 00:00:00
ubuntu
ubuntu
GIMP vulnerabilities
2012-09-10 00:00:00
suse
suse
gimp to fix various issues (important)
2012-09-03 11:09:17
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
0.008 Low
EPSS
Percentile
81.6%
Related for UB:CVE-2012-3236