CVE-2006-4808 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2006-4808
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-4808

Description: Heap-based buffer overflow in loader_tga.c in imlib2 before 1.2.1, and possibly other versions, allows user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TGA image.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/30068 UBUNTU http://www.ubuntu.com/usn/usn-376-2 http://www.ubuntu.com/usn/usn-376-1 SUSE http://www.novell.com/linux/security/advisories/2006_26_sr.html SAID Secunia Advisory: SA23441 Secunia Advisory: SA22752 Secunia Advisory: SA22744 Secunia Advisory: SA22732 Secunia Advisory: SA22932 OSVDB 30103 MISC http://www.discontinuity.info/~rowan/pocs/libimlib2_pocs-1.2.0-2.2.tar.gz MANDRIVA http://www.mandriva.com/security/advisories?name=MDKSA-2007:156 http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:198 GENTOO http://security.gentoo.org/glsa/glsa-200612-20.xml BID 20903

Return to the previous page.