6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.4 High
AI Score
Confidence
High
0.1 Low
EPSS
Percentile
94.9%
Fernando Muñoz and Stefan Cornelius discovered that libwmf incorrectly
handled certain malformed images. If a user or automated system were
tricked into opening a crafted image file, an attacker could cause a denial
of service or execute arbitrary code with privileges of the user invoking
the program.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 15.04 | noarch | libwmf0.2-7 | < 0.2.8.4-10.3ubuntu1.15.04.1 | UNKNOWN |
Ubuntu | 15.04 | noarch | libwmf-bin | < 0.2.8.4-10.3ubuntu1.15.04.1 | UNKNOWN |
Ubuntu | 15.04 | noarch | libwmf-bin-dbgsym | < 0.2.8.4-10.3ubuntu1.15.04.1 | UNKNOWN |
Ubuntu | 15.04 | noarch | libwmf-dev | < 0.2.8.4-10.3ubuntu1.15.04.1 | UNKNOWN |
Ubuntu | 15.04 | noarch | libwmf-doc | < 0.2.8.4-10.3ubuntu1.15.04.1 | UNKNOWN |
Ubuntu | 15.04 | noarch | libwmf0.2-7-dbgsym | < 0.2.8.4-10.3ubuntu1.15.04.1 | UNKNOWN |
Ubuntu | 15.04 | noarch | libwmf0.2-7-gtk | < 0.2.8.4-10.3ubuntu1.15.04.1 | UNKNOWN |
Ubuntu | 15.04 | noarch | libwmf0.2-7-gtk-dbgsym | < 0.2.8.4-10.3ubuntu1.15.04.1 | UNKNOWN |
Ubuntu | 14.10 | noarch | libwmf0.2-7 | < 0.2.8.4-10.3ubuntu1.14.10.1 | UNKNOWN |
Ubuntu | 14.10 | noarch | libwmf-bin | < 0.2.8.4-10.3ubuntu1.14.10.1 | UNKNOWN |