#VU8062 Integer overflow - CVE-2017-2862

Cybersecurity Help s.r.o.

Published: 2017-08-31

Vulnerability identifier: #VU8062

Vulnerability risk: High

CVSSv4.0: 6.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2017-2862

CWE-ID: CWE-122

Exploitation vector: Network

Exploit availability: No

Vulnerable software:

Vendor:

Description
The vulnerability allows a remote attacker to execute arbitrary code on the targeted system.

The weakness exists in the gdk_pixbuf__jpeg_image_load_increment function due to heap-based buffer overflow. A remote attacker can trick the victim to click a malicious link or open a specially crafted JPEG file, trigger memory corruption and execute arbitrary code with privileges of the current user.

Successful exploitation of the vulnerability may result in system compromise.

Mitigation
Cybersecurity Help is currently unaware of any official patch addressing the vulnerability.

Vulnerable software versions

: 2.36.6

External links
https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0366

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Remote code execution in gdk-pixbuf2 comonent in F5 Traffix SDC

Integer overflow in gdk-pixbuf (Alpine package)

Debian update for gdk-pixbuf

Remote code execution in GNOME GdkPixbuf