// For flags

CVE-2007-2356

GIMP 2.2.14 - '.ras' SUNRAS Plugin Buffer Overflow

Severity Score

9.8
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

3
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Stack-based buffer overflow in the set_color_table function in sunras.c in the SUNRAS plugin in Gimp 2.2.14 allows user-assisted remote attackers to execute arbitrary code via a crafted RAS file.

Un desbordamiento de búfer en la región stack de la memoria en la función set_color_table en sunras.c en el plugin SUNRAS en Gimp versión 2.2.14 permite a los atacantes remotos asistidos por el usuario ejecutar código arbitrario por medio de un archivo RAS creado.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2007-04-26 First Exploit
  • 2007-04-30 CVE Reserved
  • 2007-04-30 CVE Published
  • 2024-08-07 CVE Updated
  • 2025-03-30 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
CWE
  • CWE-787: Out-of-bounds Write
CAPEC
References (31)
URL Tag Source
http://secunia.com/advisories/25012 Broken Link
http://secunia.com/advisories/25111 Broken Link
http://secunia.com/advisories/25167 Broken Link
http://secunia.com/advisories/25239 Broken Link
http://secunia.com/advisories/25346 Broken Link
http://secunia.com/advisories/25359 Broken Link
http://secunia.com/advisories/25466 Broken Link
http://secunia.com/advisories/25573 Broken Link
http://secunia.com/advisories/28114 Broken Link
http://www.securityfocus.com/archive/1/467231/100/0/threaded Mailing List
http://www.securitytracker.com/id?1018092 Third Party Advisory
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=238422 Issue Tracking
https://exchange.xforce.ibmcloud.com/vulnerabilities/33911 Third Party Advisory
https://issues.rpath.com/browse/RPL-1318 Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10054 Signature
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5960 Signature
URL Date SRC
https://www.exploit-db.com/exploits/3801 2007-04-26
https://www.exploit-db.com/exploits/3888 2007-05-09
http://www.securityfocus.com/bid/23680 2024-08-07
URL Date SRC
http://www.debian.org/security/2007/dsa-1301 2022-02-07
http://www.redhat.com/support/errata/RHSA-2007-0343.html 2022-02-07
URL Date SRC
http://lists.suse.com/archive/suse-security-announce/2007-May/0005.html 2022-02-07
http://security.gentoo.org/glsa/glsa-200705-08.xml 2022-02-07
http://sunsolve.sun.com/search/document.do?assetkey=1-26-103170-1 2022-02-07
http://sunsolve.sun.com/search/document.do?assetkey=1-66-201320-1 2022-02-07
http://www.mandriva.com/security/advisories?name=MDKSA-2007:108 2022-02-07
http://www.ubuntu.com/usn/usn-467-1 2022-02-07
http://www.vupen.com/english/advisories/2007/1560 2022-02-07
http://www.vupen.com/english/advisories/2007/4241 2022-02-07
https://access.redhat.com/security/cve/CVE-2007-2356 2007-05-21
https://bugzilla.redhat.com/show_bug.cgi?id=238420 2007-05-21
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Gimp
Search vendor "Gimp"
 Gimp
Search vendor "Gimp" for product "Gimp"
 2.2.14
Search vendor "Gimp" for product "Gimp" and version "2.2.14"
-
Affected