CVE-2012-4405
argyllcms: Array index error leading to heap-based bufer OOB write
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Multiple integer underflows in the icmLut_allocate function in International Color Consortium (ICC) Format library (icclib), as used in Ghostscript 9.06 and Argyll Color Management System, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted (1) PostScript or (2) PDF file with embedded images, which triggers a heap-based buffer overflow. NOTE: this issue is also described as an array index error.
Múltiples desbordamientos inferiores de enteros en la función icmLut_allocate en la librería del formato International Color Consortium (ICC),icclib, tal y como se utiliza en Ghostscript v9.06 y Argyll Color Management System, permite a atacantes remotos provocar una denegación de servicio (caída de la aplicación) y posiblemente ejecutar código de su elección a través de un (1) PostScript o (2) Archivo PDF hecho a mano con imágenes incrustadas, lo que provoca un desbordamiento de búfer basado en memoria dinámica (heap). NOTA: este problema se describe también como un error de índice de matriz.
An update that fixes one vulnerability is now available. The following security issue was fixed in ghostscript. Multiple integer underflows in the icmLut_allocate function in International Color Consortium Format library, as used in Ghostscript 9.06 and Argyll Color Management System, allow remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted PostScript or PDF file with embedded images, which triggers a heap-based buffer overflow. NOTE. This issue is also described as an array index error.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2012-08-21 CVE Reserved
- 2012-09-11 CVE Published
- 2024-08-06 CVE Updated
- 2025-05-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-189: Numeric Errors
- CWE-787: Out-of-bounds Write
CAPEC
References (17)
| URL | Tag | Source |
|---|---|---|
| http://secunia.com/advisories/50719 | Third Party Advisory | |
| http://www.openwall.com/lists/oss-security/2012/09/11/2 | Mailing List |
|
| http://www.securityfocus.com/bid/55494 | Vdb Entry | |
| http://www.securitytracker.com/id?1027517 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/78411 | Vdb Entry | |
| https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0301 | X_refsource_confirm |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Argyllcms Search vendor "Argyllcms" | Cms Search vendor "Argyllcms" for product "Cms" | - | - |
Affected
| ||||||
| Color Search vendor "Color" | Icclib Search vendor "Color" for product "Icclib" | - | - |
Affected
| ||||||
| Ghostscript Search vendor "Ghostscript" | Ghostscript Search vendor "Ghostscript" for product "Ghostscript" | 9.06 Search vendor "Ghostscript" for product "Ghostscript" and version "9.06" | - |
Affected
| ||||||