CVE-2006-3376

Published Jul 6, 2006

Last updated 6 years ago

Overview

Description: Integer overflow in player.c in libwmf 0.2.8.4, as used in multiple products including (1) wv, (2) abiword, (3) freetype, (4) gimp, (5) libgsf, and (6) imagemagick allows remote attackers to execute arbitrary code via the MaxRecordSize header field in a WMF file.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.5
Impact score: 6.4
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Vendor comments

Red HatRed Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:wvware:libwmf:0.2.8_.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4C647E35-83D2-4D21-AA48-B963B9D6A123"
          },
          {
            "criteria": "cpe:2.3:a:wvware:wv2:0.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "565FB525-8593-4148-8A01-EF99F745AB4D"
          },
          {
            "criteria": "cpe:2.3:a:wvware:wv2:0.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B0AB2FAA-427C-4313-B7AF-31829E58C367"
          },
          {
            "criteria": "cpe:2.3:a:wvware:wv2:0.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "98E88259-7829-4179-962D-64F98174F6C5"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Vendor comments

Configurations

References