Forum Thread: GTK+ Insecure Library Loading Vulnerability

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Vulnerabilities

See the original Secunia advisory:
GTK+ Insecure Library Loading Vulnerability

Secunia GTK+ Insecure Library Loading Vulnerability
Secunia Official 16th Sep, 2011 18:19
Ranking: 0
Posts: 0
User Since: -
System Score: -
Location: Copenhagen, DK
A vulnerability has been reported in GTK+, which can be exploited by malicious people to compromise an application using the library.

The vulnerability is caused due to the "_gdk_input_wintab_init_check()" (gdk/win32/gdkinput-win32.c) and the "xp_theme_init()" functions (modules/engines/ms-windows/xp_theme.c) loading libraries (wintab32.dll and uxtheme.dll) in an insecure manner. This can be exploited to load arbitrary libraries when an application using this library e.g. opens a file located on a remote WebDAV or SMB share.

Successful exploitation may allow execution of arbitrary code.

earthsound RE: GTK+ Insecure Library Loading Vulnerability
Member 16th Sep, 2011 18:19
Score: -9
Posts: 14
User Since: 10th Dec 2008
System Score: N/A
Location: Hoover, AL, US
Last edited on 16th Sep, 2011 18:19
According to the advisory, versions prior to 2.21.8 are affected. I had 2.22 installed, but secunia reported it as being vulnerable.
Was this reply relevant?
+0
-0
ddmarshall RE: GTK+ Insecure Library Loading Vulnerability
Dedicated Contributor 16th Sep, 2011 19:01
Score: 1219
Posts: 973
User Since: 8th Nov 2008
System Score: 98%
Location: UK
According to this, versions prior to 2.24.0 are vulnerable.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CV...

The Secunia recommendation to upgrade to 2.24 appears to be correct.

--
This answer is provided “as-is.” You bear the risk of using it.
Was this reply relevant?
+0
-0