CVE-2007-2956 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2007-2956
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-2956

Description: Stack-based buffer overflow in the readRadianceHeader function in (1) src/fileformat/rgbeio.cpp in pfstools 1.6.2 and (2) src/Fileformat/rgbeio.cpp in Qtpfsgui 1.8.11 allows remote attackers to execute arbitrary code via a crafted Radiance RGBE (.hdr) file.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/35949 http://xforce.iss.net/xforce/xfdb/35948 SUSE http://www.novell.com/linux/security/advisories/2007_18_sr.html SAID Secunia Advisory: SA26387 Secunia Advisory: SA26388 Secunia Advisory: SA26674 MISC http://secunia.com/secunia_research/2007-68/advisory/ http://secunia.com/secunia_research/2007-67/advisory/ CONFIRM http://umn.dl.sourceforge.net/sourceforge/qtpfsgui/qtpfsgui-1.8.12.tar.gz http://pfstools.cvs.sourceforge.net/pfstools/pfstools/src/fileformat/rgbeio.cpp?revision=1.9&view=markup http://pfstools.cvs.sourceforge.net/pfstools/pfstools/src/fileformat/rgbeio.cpp?r1=1.8&r2=1.9

Return to the previous page.