Back to search
CVE-2007-2956
Published: Aug 13, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Stack-based buffer overflow in the readRadianceHeader function in (1) src/fileformat/rgbeio.cpp in pfstools 1.6.2 and (2) src/Fileformat/rgbeio.cpp in Qtpfsgui 1.8.11 allows remote attackers to execute arbitrary code via a crafted Radiance RGBE (.hdr) file.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2007-2855
vdb-entry
x_refsource_VUPEN
http://umn.dl.sourceforge.net/sourceforge/qtpfsgui/qtpfsgui-1.8.12.tar.gz
x_refsource_CONFIRM
http://secunia.com/secunia_research/2007-67/advisory/
x_refsource_MISC
qtpfsgui-readradianceheader-bo(35948)
vdb-entry
x_refsource_XF
pfstools-readradianceheader-bo(35949)
vdb-entry
x_refsource_XF
26388
third-party-advisory
x_refsource_SECUNIA
ADV-2007-2856
vdb-entry
x_refsource_VUPEN
SUSE-SR:2007:018
vendor-advisory
x_refsource_SUSE
http://secunia.com/secunia_research/2007-68/advisory/
x_refsource_MISC
26387
third-party-advisory
x_refsource_SECUNIA
26674
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now