CVSS: 7.5EPSS: 19%CPEs: 4EXPL: 0CVE-2006-3376
https://notcve.org/view.php?id=CVE-2006-3376
Integer overflow in player.c in libwmf 0.2.8.4, as used in multiple products including (1) wv, (2) abiword, (3) freetype, (4) gimp, (5) libgsf, and (6) imagemagick allows remote attackers to execute arbitrary code via the MaxRecordSize header field in a WMF file. Desbordamiento de entero en el archivo player.c en libwmf 0.2.8.4, utilizado en múltiples productos incluyendo (1) wv, (2) abiword, (3) freetype, (4) gimp, (5) libgsf, y(6) imagemagick, que permite a los atacantes remotos ejecutar arbitrariamente código a través del campo cabecera MaxRecordSize en un archivo WMF. • http://rhn.redhat.com/errata/RHSA-2006-0597.html http://secunia.com/advisories/20921 http://secunia.com/advisories/21064 http://secunia.com/advisories/21261 http://secunia.com/advisories/21419 http://secunia.com/advisories/21459 http://secunia.com/advisories/21473 http://secunia.com/advisories/22311 http://security.gentoo.org/glsa/glsa-200608-17.xml http://securityreason.com/securityalert/1190 http://securitytracker.com/id?1016518 http://www.mandriva.com/security/advisories?na •