CVE-2011-1782 Detail

CVE-2011-1782

CVE Descriptions

Heap-based buffer overflow in the read_channel_data function in file-psp.c in the Paint Shop Pro (PSP) plugin in GIMP 2.6.11 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a PSP_COMP_RLE (aka RLE compression) image file that begins a long run count at the end of the image. NOTE: some of these details are obtained from third party information. NOTE: this vulnerability exists because of an incomplete fix for CVE-2010-4543.

CVE Informations

Related Weaknesses

CWE-ID	Weakness Name	Source
CWE-787	Out-of-bounds Write The product writes data past the end, or before the beginning, of the intended buffer.

Metrics

Metrics	Score	Severity	CVSS Vector	Source
V2	7.5		AV:N/AC:L/Au:N/C:P/I:P/A:P	nvd@nist.gov

EPSS

EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.

EPSS Score

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

EPSS Percentile

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.

EPSS First.org

Products Mentioned

Configuraton 0

Gimp>>Gimp >> Version 2.6.11

Gimp>>Gimp >> Version 2.6.11 (Open CPE detail)

References

http://www.debian.org/security/2012/dsa-2426
Tags : vendor-advisory, x_refsource_DEBIAN

https://bugzilla.redhat.com/show_bug.cgi?id=704512
Tags : x_refsource_CONFIRM

http://secunia.com/advisories/48236
Tags : third-party-advisory, x_refsource_SECUNIA

http://www.mandriva.com/security/advisories?name=MDVSA-2011:103
Tags : vendor-advisory, x_refsource_MANDRIVA

CVE-2011-1782 : Detail