QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2008-3639

Back to search

CVE-2008-3639

Published: Oct 14, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

Heap-based buffer overflow in the read_rle16 function in imagetops in CUPS before 1.3.9 allows remote attackers to execute arbitrary code via an SGI image with malformed Run Length Encoded (RLE) data containing a small image and a large row count.

VendorProductVersions

n/a

n/a

affected
n/a

References

oval:org.mitre.oval:def:11464
vdb-entry
signature
x_refsource_OVAL
261088
vendor-advisory
x_refsource_SUNALERT
32284
third-party-advisory
x_refsource_SECUNIA
MDVSA-2008:211
vendor-advisory
x_refsource_MANDRIVA
ADV-2008-2782
vdb-entry
x_refsource_VUPEN
GLSA-200812-11
vendor-advisory
x_refsource_GENTOO
32331
third-party-advisory
x_refsource_SECUNIA
33111
third-party-advisory
x_refsource_SECUNIA
32292
third-party-advisory
x_refsource_SECUNIA
ADV-2009-1568
vdb-entry
x_refsource_VUPEN
1021033
vdb-entry
x_refsource_SECTRACK
FEDORA-2008-8844
vendor-advisory
x_refsource_FEDORA
FEDORA-2008-8801
vendor-advisory
x_refsource_FEDORA
SUSE-SR:2008:021
vendor-advisory
x_refsource_SUSE
33085
third-party-advisory
x_refsource_SECUNIA
31690
vdb-entry
x_refsource_BID
ADV-2008-3401
vdb-entry
x_refsource_VUPEN
cups-readrle16-bo(45789)
vdb-entry
x_refsource_XF
32226
third-party-advisory
x_refsource_SECUNIA
DSA-1656
vendor-advisory
x_refsource_DEBIAN
USN-656-1
vendor-advisory
x_refsource_UBUNTU
32084
third-party-advisory
x_refsource_SECUNIA
RHSA-2008:0937
vendor-advisory
x_refsource_REDHAT
32316
third-party-advisory
x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now