CVE-2007-5503

Severity

68%

Complexity

86%

Confidentiality

106%

Multiple integer overflows in Cairo before 1.4.12 might allow remote attackers to execute arbitrary code, as demonstrated using a crafted PNG image with large width and height values, which is not properly handled by the read_png function.

Multiple integer overflows in Cairo before 1.4.12 might allow remote attackers to execute arbitrary code, as demonstrated using a crafted PNG image with large width and height values, which is not properly handled by the read_png function.

CVSS 2.0 Base Score 6.8. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:P/I:P/A:P).

Overview

First reported 17 years ago

2007-11-30 01:46:00

Last updated 6 years ago

2018-10-15 21:45:00

Affected Software

Red Hat Cairo

References

http://bugs.gentoo.org/show_bug.cgi?id=200350

http://bugs.gentoo.org/show_bug.cgi?id=201860

http://gitweb.freedesktop.org/?p=cairo;a=commitdiff;h=5c7d2d14d78e4dfb1ef6d2c40f0910f177e07360

http://gitweb.freedesktop.org/?p=cairo;a=commitdiff;h=e49bcde27f88e21d5b8037a0089a226096f6514b

Exploit

http://gitweb.freedesktop.org/?p=cairo;a=commitdiff_plain;h=6020f67f1a49cfe3844c4938d4af24c63c8424cc;hp=c79fc9af334fd6f2d1078071d64178125561b187

20080830 VMSA-2008-0014 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Server, VMware ESX address information disclosure, privilege escalation and other security issues.

SUSE-SR:2008:003

RHSA-2007:1078

Patch, Vendor Advisory

27775

Vendor Advisory

27819

Vendor Advisory

27880

Vendor Advisory

27887

Vendor Advisory

27985

Vendor Advisory

28289

Vendor Advisory

28476

Vendor Advisory

28529

Vendor Advisory

28555

Vendor Advisory

28838

Vendor Advisory

29767

Vendor Advisory

31707

Vendor Advisory

31711

Vendor Advisory

GLSA-200712-04

GLSA-201209-25

SSA:2007-337-01

http://wiki.rpath.com/wiki/Advisories:rPSA-2008-0015

DSA-1542

GLSA-200712-24

MDVSA-2008:019

20080115 rPSA-2008-0015-1 cairo

20080830 VMSA-2008-0014 Updates to VMware Workstation, VMware Player, VMware ACE, VMware Server, VMware ESX address information disclosure, privilege escalation and other security issues.

26650

1019027

http://www.vmware.com/security/advisories/VMSA-2008-0014.html

http://www.vmware.com/support/player2/doc/releasenotes_player2.html

http://www.vmware.com/support/server/doc/releasenotes_server.html

http://www.vmware.com/support/ws6/doc/releasenotes_ws6.html

ADV-2007-4045

Vendor Advisory

ADV-2008-2466

Vendor Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=387431

cario-readpng-bo(38771)

https://issues.rpath.com/browse/RPL-1966

oval:org.mitre.oval:def:11251

USN-550-1

USN-550-2

FEDORA-2007-3818

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.