Gnu · Gimp · CVE-2012-4245
**Name of the Vulnerable Software and Affected Versions**
GIMP version 2.6
**Description**
The issue concerns the scriptfu network server in GIMP, which does not require authentication. This allows remote attackers to execute arbitrary commands via the python-fu-eval command.
**Recommendations**
For GIMP version 2.6, consider disabling the scriptfu network server until a patch is available to prevent remote attackers from executing arbitrary commands.