CVE-2006-1060 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2006-1060
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-1060

Description: Heap-based buffer overflow in zgv before 5.8 and xzgv before 0.8 might allow user-assisted attackers to execute arbitrary code via a JPEG image with more than 3 output components, such as a CMYK or YCCK color space, which causes less memory to be allocated than required.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/25718 SUSE http://www.novell.com/linux/security/advisories/2006_08_sr.html SREASON http://securityreason.com/securityalert/756 SAID Secunia Advisory: SA19757 Secunia Advisory: SA19572 Secunia Advisory: SA19571 Secunia Advisory: SA19731 Secunia Advisory: SA19779 Secunia Advisory: SA19790 DEBIAN http://www.debian.org/security/2006/dsa-1038 http://www.debian.org/security/2006/dsa-1037 BID 17409

Return to the previous page.