Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.1
CVSSv2

CVE-2007-0010

Published: 24/01/2007 Updated: 07/02/2022
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9
VMScore: 215
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Gnome

Vulnerability Summary

The GdkPixbufLoader function in GIMP ToolKit (GTK+) in GTK 2 (gtk2) prior to 2.4.13 allows context-dependent malicious users to cause a denial of service (crash) via a malformed image file.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

gnome gtk

Vendor Advisories

Ubuntu Security Notice: gtk+2.0 vulnerability
A flaw was discovered in the error handling of GTK’s image loading library Applications opening certain corrupted images could be made to crash, causing a denial of service ...
Debian Security Advisories: DSA-1256-1 gtk+2.0 -- programming error
It was discovered that the image loading code in the GTK+ graphical user interface library performs insufficient error handling when loading malformed images, which may lead to denial of service For the stable distribution (sarge) this problem has been fixed in version 264-32 This update lacks builds for the Motorola 680x0 architecture, which ...

Exploits

Exploit DB: GTK2 GDKPixBufLoader - Remote Denial of Service
source: wwwsecurityfocuscom/bid/22209/info Applications using the gtk2 library may be prone to a denial-of-service vulnerability because the library fails to handle malformed image data An attacker can exploit this issue to crash applications on a victim's computer githubcom/offensive-security/exploitdb-bin-sploits/raw/maste ...

References

NVD-CWE-noinfohttps://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=218932http://www.redhat.com/support/errata/RHSA-2007-0019.htmlhttps://issues.rpath.com/browse/RPL-984http://www.novell.com/linux/security/advisories/2007_02_sr.htmlhttp://www.ubuntu.com/usn/usn-415-1http://www.securityfocus.com/bid/22209http://securitytracker.com/id?1017552http://secunia.com/advisories/23884http://secunia.com/advisories/23933http://secunia.com/advisories/23935http://secunia.com/advisories/24010http://secunia.com/advisories/24006http://secunia.com/advisories/24095http://secunia.com/advisories/23984http://www.mandriva.com/security/advisories?name=MDKSA-2007:039http://osvdb.org/31621http://www.vupen.com/english/advisories/2007/0331https://www.debian.org/security/2007/dsa-1256https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10325https://usn.ubuntu.com/415-1/https://nvd.nist.govhttps://www.exploit-db.com/exploits/29520/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322administrator privilegesCVE-2024-1579hardcodedCVE-2023-20198CVE-2024-33587CVE-2024-33449CVE-2024-4308HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook