CVE-2006-4808

Published: Nov 7, 2006Modified: Apr 23, 2026

2.6

Vector

AV:N/AC:H/Au:N/C:N/I:N/A:P

Exploitability: 4.9 / Impact: 2.9

Source: NVD

Description

Heap-based buffer overflow in loader_tga.c in imlib2 before 1.2.1, and possibly other versions, allows user-assisted remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted TGA image.

Affected (9)

Products: Enlightenment: Imlib2

1 product

Configuration A

9 vulnerable

Vulnerable Software	Affected Versions
Enlightenment Imlib2	Version 1.0.1
Enlightenment Imlib2	Version 1.0.2
Enlightenment Imlib2	Version 1.0.3
Enlightenment Imlib2	Version 1.0.4
Enlightenment Imlib2	Version 1.0.5
Enlightenment Imlib2	Version 1.0
Enlightenment Imlib2	Version 1.1.1
Enlightenment Imlib2	Version 1.1.2
Enlightenment Imlib2	Version 1.1

References (32)

http://secunia.com/advisories/22732

Source: secalert@redhat.com

Vendor Advisory

http://secunia.com/advisories/22744

Source: secalert@redhat.com

PatchVendor Advisory

http://secunia.com/advisories/22752

Source: secalert@redhat.com

PatchVendor Advisory

http://secunia.com/advisories/22932

Source: secalert@redhat.com

http://secunia.com/advisories/23441

Source: secalert@redhat.com

http://security.gentoo.org/glsa/glsa-200612-20.xml

Source: secalert@redhat.com

http://www.discontinuity.info/~rowan/pocs/libimlib2_pocs-1.2.0-2.2.tar.gz

Source: secalert@redhat.com

http://www.mandriva.com/security/advisories?name=MDKSA-2006:198

Source: secalert@redhat.com

http://www.mandriva.com/security/advisories?name=MDKSA-2007:156

Source: secalert@redhat.com

http://www.novell.com/linux/security/advisories/2006_26_sr.html

Source: secalert@redhat.com

http://www.osvdb.org/30103

Source: secalert@redhat.com

http://www.securityfocus.com/bid/20903

Source: secalert@redhat.com

http://www.ubuntu.com/usn/usn-376-1

Source: secalert@redhat.com

Patch

http://www.ubuntu.com/usn/usn-376-2

Source: secalert@redhat.com

Patch

http://www.vupen.com/english/advisories/2006/4349

Source: secalert@redhat.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/30068

Source: secalert@redhat.com

http://secunia.com/advisories/22732

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/22744

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://secunia.com/advisories/22752

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://secunia.com/advisories/22932

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/23441

Source: af854a3a-2127-422b-91ae-364da2661108

http://security.gentoo.org/glsa/glsa-200612-20.xml

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.discontinuity.info/~rowan/pocs/libimlib2_pocs-1.2.0-2.2.tar.gz

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDKSA-2006:198

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.mandriva.com/security/advisories?name=MDKSA-2007:156

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.novell.com/linux/security/advisories/2006_26_sr.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.osvdb.org/30103

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/20903

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.ubuntu.com/usn/usn-376-1

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.ubuntu.com/usn/usn-376-2

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.vupen.com/english/advisories/2006/4349

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/30068

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.