Computer Security
[EN] securityvulns.ru no-pyccku


TK Toolkit buffer overflow
Published:29.11.2007
Source:
SecurityVulns ID:8388
Type:remote
Threat Level:
5/10
Description:Buffer overflow on animated GIF loading.
Affected:TK : Tk Toolkit 8.4
 TK : Tk Toolkit 8.3
CVE:CVE-2007-5378 (Buffer overflow in the FileReadGIF function in tkImgGIF.c for Tk Toolkit 8.4.12 and earlier, and 8.3.5 and earlier, allows user-assisted attackers to cause a denial of service (segmentation fault) via an animated GIF in which the first subimage is smaller than a subsequent subimage, which triggers the overflow in the ReadImage function, a different vulnerability than CVE-2007-5137.)
Original documentdocumentDEBIAN, [SECURITY] [DSA 1416-1] New tk8.3 packages fix arbitrary code execution (29.11.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod