PT-2015-6631 · Sourceforge+5 · Libwmf+5

Fernando Muñoz

Publicado

2015-07-01

Atualizado

2025-09-03

CVE-2015-4588

CVSS v2.0

6.8

Média

Vetor

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions libwmf version 0.2.8.4

Description The issue is related to a heap-based buffer overflow in the DecodeImage function, which can be triggered by a crafted "run-length count" in an image in a WMF file. This can cause a denial of service (crash) or possibly allow remote attackers to execute arbitrary code.

Recommendations For libwmf version 0.2.8.4, consider updating to a newer version that addresses this issue, as no specific fix is provided for this version.

Exploit

Correção

DoS

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

ALT-PU-2017-2327

ALT-PU-2025-10401

ALT-PU-2025-11012

CESA-2015_1917

CVE-2015-4588

DLA-253-1

DSA-3302-1

MGASA-2015-0261

OPENSUSE-SU-2024:10337-1

RHSA-2015:1917

RHSA-2015_1917

SUSE-SU-2015:1378-1

SUSE-SU-2015:1484-1

USN-2670-1

Produtos afetados

Alt Linux

Centos

Red Hat

Suse

Ubuntu

Libwmf

PT-2015-6631 · Sourceforge+5 · Libwmf+5

CVE-2015-4588

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 85