QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2006-3404

Back to search

CVE-2006-3404

Published: Jul 6, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

Buffer overflow in the xcf_load_vector function in app/xcf/xcf-load.c for gimp before 2.2.12 allows user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via an XCF file with a large num_axes value in the VECTORS property.

VendorProductVersions

n/a

n/a

affected
n/a

References

1016527
vdb-entry
x_refsource_SECTRACK
27037
vdb-entry
x_refsource_OSVDB
102720
vendor-advisory
x_refsource_SUNALERT
200070
vendor-advisory
x_refsource_SUNALERT
21182
third-party-advisory
x_refsource_SECUNIA
18877
vdb-entry
x_refsource_BID
GLSA-200607-08
vendor-advisory
x_refsource_GENTOO
21459
third-party-advisory
x_refsource_SECUNIA
ADV-2006-2703
vdb-entry
x_refsource_VUPEN
SUSE-SR:2006:019
vendor-advisory
x_refsource_SUSE
RHSA-2006:0598
vendor-advisory
x_refsource_REDHAT
ADV-2006-4634
vdb-entry
x_refsource_VUPEN
21170
third-party-advisory
x_refsource_SECUNIA
23044
third-party-advisory
x_refsource_SECUNIA
DSA-1116
vendor-advisory
x_refsource_DEBIAN
oval:org.mitre.oval:def:5908
vdb-entry
signature
x_refsource_OVAL
21198
third-party-advisory
x_refsource_SECUNIA
MDKSA-2006:127
vendor-advisory
x_refsource_MANDRIVA
USN-312-1
vendor-advisory
x_refsource_UBUNTU
21069
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:11259
vdb-entry
signature
x_refsource_OVAL
20979
third-party-advisory
x_refsource_SECUNIA
20976
third-party-advisory
x_refsource_SECUNIA
20060724 rPSA-2006-0135-1 gimp
mailing-list
x_refsource_BUGTRAQ
21104
third-party-advisory
x_refsource_SECUNIA
gimp-xcfloadvector-bo(27687)
vdb-entry
x_refsource_XF

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now