Vulnerability CVE-2006-4809: Information

Description

Stack-based buffer overflow in loader_pnm.c in imlib2 before 1.2.1, and possibly other versions, allows user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PNM image.

Severity: MEDIUM (5.1)

URL: https://nvd.nist.gov/vuln/detail/CVE-2006-4809
Published: Nov. 7, 2006
Modified: July 20, 2017

References to Advisories, Solutions, and Tools

Hyperlink
Resource
http://www.discontinuity.info/~rowan/pocs/libimlib2_pocs-1.2.0-2.2.tar.gz
    USN-376-1
    • Patch
    20903
      22732
      • Vendor Advisory
      22744
      • Patch
      • Vendor Advisory
      USN-376-2
      • Patch
      22752
      • Patch
      • Vendor Advisory
      30104
        SUSE-SR:2006:026
          GLSA-200612-20
            23441
              22932
                MDKSA-2006:198
                  MDKSA-2007:156
                    ADV-2006-4349
                      imlib2-loaderpnmc-bo(30070)

                          1. Configuration 1

                            cpe:2.3:a:enlightenment:imlib2:1.1.1:*:*:*:*:*:*:*
                            cpe:2.3:a:enlightenment:imlib2:1.0:*:*:*:*:*:*:*
                            cpe:2.3:a:enlightenment:imlib2:1.0.5:*:*:*:*:*:*:*
                            cpe:2.3:a:enlightenment:imlib2:1.0.2:*:*:*:*:*:*:*
                            cpe:2.3:a:enlightenment:imlib2:1.1:*:*:*:*:*:*:*
                            cpe:2.3:a:enlightenment:imlib2:1.0.3:*:*:*:*:*:*:*
                            cpe:2.3:a:enlightenment:imlib2:1.0.4:*:*:*:*:*:*:*
                            cpe:2.3:a:enlightenment:imlib2:1.0.1:*:*:*:*:*:*:*
                            cpe:2.3:a:enlightenment:imlib2:1.1.2:*:*:*:*:*:*:*
                        VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
                        Version: v24.4.2
                        Back to top