Main Vulnerability Database Exploits ID:3658 - Exploit for NULL pointer dereference in Gimp - CVE-2012-3236

ID:3658 - Exploit for NULL pointer dereference in Gimp - CVE-2012-3236

Published: July 29, 2020

Vulnerability identifier: #VU32772

Vulnerability risk: Medium

CVE-ID: CVE-2012-3236

CWE-ID: CWE-476

Exploitation vector: Remote access

Vulnerable software:
Gimp

Link to public exploit:

https://www.exploit-db.com/exploits/19482/

Vulnerability description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error. A remote attacker can trigger denial of service conditions via a malformed XTENSION header of a .fit file, as demonstrated using a long string.

Remediation

Install update from vendor's website.

ID:3658 - Exploit for NULL pointer dereference in Gimp - CVE-2012-3236

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human