Gnu · Gimp · CVE-2006-3404
**Name of the Vulnerable Software and Affected Versions**
Gimp versions prior to 2.2.12
**Description**
The issue is related to a buffer overflow in the `xcf load vector` function, which can be triggered by an XCF file containing a large `num axes` value in the `VECTORS` property. This could allow user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code.
**Recommendations**
For versions prior to 2.2.12, update to version 2.2.12 or later to resolve the issue. As a temporary workaround, consider avoiding the use of XCF files with large `num axes` values in the `VECTORS` property until the update is applied.