Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0544

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-0544
Last Modified 07 Mar 2011 10:04:52
Published 01 Feb 2008 03:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0544

Summary

Heap-based buffer overflow in the IMG_LoadLBM_RW function in IMG_lbm.c in SDL_image before 1.2.7 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted IFF ILBM file. NOTE: some of these details are obtained from third party information.

Vulnerable Systems

Application

  • Sdl Image 1.2.6


References

XF - sdlimage-imgloadlbmrw-bo(39899)

VUPEN - ADV-2008-0266

BID - 27435

CONFIRM - http://www.libsdl.org/cgi/viewvc.cgi/trunk/SDL_image/IMG_lbm.c?revision=3521&view=markup

CONFIRM - http://www.libsdl.org/cgi/viewvc.cgi/trunk/SDL_image/IMG_lbm.c?r1=3341&r2=3521

DEBIAN - DSA-1493

SECUNIA - 28640

FEDORA - FEDORA-2008-1231

FEDORA - FEDORA-2008-1208

CONFIRM - https://issues.rpath.com/browse/RPL-2206

UBUNTU - USN-595-1

BUGTRAQ - 20080213 rPSA-2008-0061-1 SDL_image

MANDRIVA - MDVSA-2008:040

GENTOO - GLSA-200802-01

CONFIRM - http://wiki.rpath.com/Advisories:rPSA-2008-0061

SECUNIA - 29542

SECUNIA - 28869

SECUNIA - 28850

SECUNIA - 28830

SECUNIA - 28752

CONFIRM - http://bugs.gentoo.org/show_bug.cgi?id=207933


Last Updated: 27 May 2016 10:46:50