Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-2785

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2015-2785
Last Modified 30 Mar 2015 03:17:38
Published 29 Mar 2015 05:59:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2015-2785

Summary

The GIF encoder in Byzanz allows remote attackers to cause a denial of service (out-of-bounds heap write and crash) or possibly execute arbitrary code via a crafted Byzanz debug data recording (ByzanzRecording file) to the byzanz-playback command.

Vulnerable Systems

Application

  • Gnome Byzanz


References

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=852481

MISC - https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=778261

MLIST - [oss-security] 20150206 byzanz: Out-of heap-based buffer write in GIF encoder


Last Updated: 27 May 2016 11:08:15