// For flags

CVE-2007-5137

Tk GIF processing buffer overflow

Severity Score

6.8
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Buffer overflow in the ReadImage function in generic/tkImgGIF.c in Tcl (Tcl/Tk) 8.4.13 through 8.4.15 allows remote attackers to execute arbitrary code via multi-frame interlaced GIF files in which later frames are smaller than the first. NOTE: this issue is due to an incorrect patch for CVE-2007-5378.

Un desbordamiento de búfer en la función ReadImage en el archivo generic/tkImgGIF.c en Tcl (Tcl/Tk) versiones 8.4.13 hasta 8.4.15, permite a atacantes remotos ejecutar código arbitrario por medio de archivos GIF entrelazados de múlti-trama en los que las tramas posteriores son más pequeñas que la primera. NOTA: este problema es debido a un parche incorrecto para CVE-2007-5378.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2007-09-28 CVE Reserved
  • 2007-09-28 CVE Published
  • 2024-08-07 CVE Updated
  • 2024-09-08 EPSS Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (22)
URL Tag Source
http://bugs.gentoo.org/show_bug.cgi?id=192539 X_refsource_misc
http://secunia.com/advisories/27086 Third Party Advisory
http://secunia.com/advisories/27182 Third Party Advisory
http://secunia.com/advisories/27207 Third Party Advisory
http://secunia.com/advisories/27229 Third Party Advisory
http://secunia.com/advisories/27295 Third Party Advisory
http://secunia.com/advisories/29069 Third Party Advisory
http://secunia.com/advisories/34297 Third Party Advisory
http://www.attrition.org/pipermail/vim/2007-October/001826.html Mailing List
http://www.securityfocus.com/bid/25826 Vdb Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9540 Signature
URL Date SRC
URL Date SRC
http://secunia.com/advisories/26942 2017-09-29
http://sourceforge.net/project/shownotes.php?release_id=541207 2017-09-29
URL Date SRC
http://security.gentoo.org/glsa/glsa-200710-07.xml 2017-09-29
http://www.debian.org/security/2009/dsa-1743 2017-09-29
http://www.mandriva.com/security/advisories?name=MDKSA-2007:200 2017-09-29
http://www.novell.com/linux/security/advisories/2007_20_sr.html 2017-09-29
http://www.redhat.com/support/errata/RHSA-2008-0136.html 2017-09-29
http://www.ubuntu.com/usn/usn-529-1 2017-09-29
https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00261.html 2017-09-29
https://access.redhat.com/security/cve/CVE-2007-5137 2008-02-21
https://bugzilla.redhat.com/show_bug.cgi?id=290991 2008-02-21
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Tcl Tk
Search vendor "Tcl Tk"
 Tcl Tk
Search vendor "Tcl Tk" for product "Tcl Tk"
 8.4.13
Search vendor "Tcl Tk" for product "Tcl Tk" and version "8.4.13"
-
Affected
Tcl Tk
Search vendor "Tcl Tk"
 Tcl Tk
Search vendor "Tcl Tk" for product "Tcl Tk"
 8.4.14
Search vendor "Tcl Tk" for product "Tcl Tk" and version "8.4.14"
-
Affected
Tcl Tk
Search vendor "Tcl Tk"
 Tcl Tk
Search vendor "Tcl Tk" for product "Tcl Tk"
 8.4.15
Search vendor "Tcl Tk" for product "Tcl Tk" and version "8.4.15"
-
Affected