Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2015-4588

Опубликовано: 01 июл. 2015
Источник: nvd
CVSS2: 6.8
EPSS Низкий

Описание

Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted "run-length count" in an image in a WMF file.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:13.2:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:a:wvware:libwmf:0.2.8.4:*:*:*:*:*:*:*
Конфигурация 3
cpe:2.3:o:fedoraproject:fedora:21:*:*:*:*:*:*:*

EPSS

Процентиль: 91%
0.07211
Низкий

6.8 Medium

CVSS2

Дефекты

CWE-119

Связанные уязвимости

ubuntu логотип

CVE-2015-4588

ubuntu
около 10 лет назад

Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted "run-length count" in an image in a WMF file.

redhat логотип

CVE-2015-4588

redhat
больше 10 лет назад

Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted "run-length count" in an image in a WMF file.

debian логотип

CVE-2015-4588

debian
около 10 лет назад

Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8 ...

github логотип

GHSA-v3qj-6mjm-fxx7

github
больше 3 лет назад

Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted "run-length count" in an image in a WMF file.

suse-cvrf логотип

SUSE-SU-2015:1378-1

suse-cvrf
около 10 лет назад

Security update for libwmf

EPSS

Процентиль: 91%
0.07211
Низкий

6.8 Medium

CVSS2

Дефекты

CWE-119