Remote code execution in GNOME GdkPixbuf



Risk High
Patch available NO
Number of vulnerabilities 2
CVE-ID CVE-2017-2870
CVE-2017-2862
CWE-ID CWE-190
CWE-122
Exploitation vector Network
Public exploit N/A
Vulnerable software
Other
Vendor

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Integer overflow

EUVDB-ID: #VU8061

Risk: High

CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2017-2870

CWE-ID: CWE-190 - Integer overflow

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the targeted system.

The weakness exists in the tiffimageparse functionality due to integer overflow. A remote attacker can trick the victim to click a malicious link or open a specially crafted TIFF file, trigger heap-based buffer overflow and execute arbitrary code with privileges of the current user.

Successful exploitation of the vulnerability may result in system compromise.

Mitigation

Cybersecurity Help is currently unaware of any official patch addressing the vulnerability.

Vulnerable software versions

: 2.36.6

CPE2.3 External links

https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0377


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Integer overflow

EUVDB-ID: #VU8062

Risk: High

CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2017-2862

CWE-ID: CWE-122 - Heap-based Buffer Overflow

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the targeted system.

The weakness exists in the gdk_pixbuf__jpeg_image_load_increment function due to heap-based buffer overflow. A remote attacker can trick the victim to click a malicious link or open a specially crafted JPEG file, trigger memory corruption and execute arbitrary code with privileges of the current user.

Successful exploitation of the vulnerability may result in system compromise.

Mitigation

Cybersecurity Help is currently unaware of any official patch addressing the vulnerability.

Vulnerable software versions

: 2.36.6

CPE2.3 External links

https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0366


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###