CVE-2008-0553 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2008-0553
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2008-0553

Description: Stack-based buffer overflow in the ReadImage function in tkImgGIF.c in Tk (Tcl/Tk) before 8.5.1 allows remote attackers to execute arbitrary code via a crafted GIF image, a similar issue to CVE-2006-4484.

CVE Status: Candidate

References: SUSE http://lists.opensuse.org/opensuse-security-announce/2008-04/msg00005.html http://www.novell.com/linux/security/advisories/2008_13_sr.html SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-237465-1 ST 1019309 SAID Secunia Advisory: SA28848 Secunia Advisory: SA28857 Secunia Advisory: SA28867 Secunia Advisory: SA28954 Secunia Advisory: SA28784 Secunia Advisory: SA28807 Secunia Advisory: SA29069 Secunia Advisory: SA29070 Secunia Advisory: SA29622 Secunia Advisory: SA30129 Secunia Advisory: SA30535 Secunia Advisory: SA30783 Secunia Advisory: SA30717 Secunia Advisory: SA30188 REDHAT http://www.redhat.com/support/errata/RHSA-2008-0135.html http://www.redhat.com/support/errata/RHSA-2008-0134.html http://www.redhat.com/support/errata/RHSA-2008-0136.html MANDRIVA http://www.mandriva.com/security/advisories?name=MDVSA-2008:041 FEDORA DEBIAN http://www.debian.org/security/2008/dsa-1598 http://www.debian.org/security/2008/dsa-1491 http://www.debian.org/security/2008/dsa-1490 CONFIRM http://wiki.rpath.com/Advisories:rPSA-2008-0054 http://www.vmware.com/security/advisories/VMSA-2008-0009.html http://sourceforge.net/project/shownotes.php?release_id=573933&group_id=10894 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/493080/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/488069/100/0/threaded BID 27655

Return to the previous page.