Lucene search

[email protected]CVE-2008-0554

HistoryFeb 08, 2008 - 2:00 a.m.

CVE-2008-0554

2008-02-0802:00:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2008-0554

buffer overflow

netpbm

denial of service

remote attackers

arbitrary code

gif image

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.8 High

AI Score

Confidence

Low

0.317 Low

EPSS

Percentile

97.0%

JSON

Buffer overflow in the readImageData function in giftopnm.c in netpbm before 10.27 in netpbm before 10.27 allows remote user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted GIF image, a similar issue to CVE-2006-4484.

Affected configurations

NVD

Node

netpbmnetpbmRange≤10.26

CPENameOperatorVersion
netpbm:netpbmnetpbmle10.26

CPE	Name	Operator	Version
netpbm:netpbm	netpbm	le	10.26

References

bugs.debian.org/cgi-bin/bugreport.cgi?bug=464056

secunia.com/advisories/29079

secunia.com/advisories/30280

secunia.com/advisories/32607

ubuntu.com/usn/usn-665-1

www.debian.org/security/2008/dsa-1579

www.mandriva.com/security/advisories?name=MDVSA-2008:039

www.redhat.com/support/errata/RHSA-2008-0131.html

www.securityfocus.com/bid/27682

www.securitytracker.com/id?1019358

www.vupen.com/english/advisories/2008/0460

issues.rpath.com/browse/RPL-2216

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10975

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.8 High

AI Score

Confidence

Low

0.317 Low

EPSS

Percentile

97.0%

JSON

Related for CVE-2008-0554

prion4 cvelist5 debiancve5 nvd5 ubuntucve5 redhat4 nessus30 openvas48 securityvulns3 centos4 ubuntu2 oraclelinux4 debian3 fedora3 cve4 gentoo1 freebsd1 suse1