Mission and Overview
NVD is the U.S. government repository of standards based vulnerability management data. This data enables automation of vulnerability management, security measurement, and compliance (e.g. FISMA).
Resource Status
NVD contains:
CVE Vulnerabilities
39671
Checklists
129
US-CERT Alerts
187
US-CERT Vuln Notes
2351
OVAL Queries
2517
CPE Names
17905

Last updated: Sun Nov 22 18:29:50 EST 2009

CVE Publication rate: 9.67

Email List

NVD provides four mailing lists to the public. For information and subscription instructions please visit NVD Mailing Lists

Workload Index

Vulnerability Workload Index: 5.3

About Us
NVD is a product of the NIST Computer Security Division and is sponsored by the Department of Homeland Security's National Cyber Security Division. It supports the U.S. government multi-agency (OSD, DHS, NSA, DISA, and NIST) Information Security Automation Program. It is the U.S. government content repository for the Security Content Automation Protocol (SCAP).

National Cyber-Alert System

Vulnerability Summary for CVE-2007-2949

Original release date:07/04/2007
Last revised:03/04/2009
Source: US-CERT/NIST

Overview

Integer overflow in the seek_to_and_unpack_pixeldata function in the psd.c plugin in Gimp 2.2.15 allows remote attackers to execute arbitrary code via a crafted PSD file that contains a large (1) width or (2) height value.

Impact

CVSS Severity (version 2.0):
CVSS v2 Base Score:6.8 (MEDIUM) (AV:N/AC:M/Au:N/C:P/I:P/A:P) (legend)
Impact Subscore: 6.4
Exploitability Subscore: 8.6
CVSS Version 2 Metrics:
Access Vector: Network exploitable; Victim must voluntarily interact with attack mechanism
Access Complexity: Medium
Authentication: Not required to exploit
Impact Type:Provides unauthorized access, Allows partial confidentiality, integrity, and availability violation; Allows unauthorized disclosure of information; Allows disruption of service

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

US-CERT Vulnerability Note: VU#399896
Name: VU#399896
Hyperlink:http://www.kb.cert.org/vuls/id/399896
External Source: VUPEN
Name: ADV-2007-2421
Type: Advisory; Patch Information
Hyperlink:http://www.frsirt.com/english/advisories/2007/2421
External Source: MISC
Name: http://secunia.com/secunia_research/2007-63/advisory/
Type: Advisory; Patch Information
Hyperlink:http://secunia.com/secunia_research/2007-63/advisory/
External Source: SECUNIA
Name: 25677
Type: Advisory; Patch Information
Hyperlink:http://secunia.com/advisories/25677
External Source: BID
Name: 24745
Hyperlink:http://www.securityfocus.com/bid/24745
External Source: CONFIRM
Name: http://svn.gnome.org/viewcvs/gimp?view=revision&revision=22798
Hyperlink:http://svn.gnome.org/viewcvs/gimp?view=revision&revision=22798
External Source: OVAL
Name: oval:org.mitre.oval:def:5772
Hyperlink:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:5772
External Source: CONFIRM
Name: https://issues.rpath.com/browse/RPL-1487
Hyperlink:https://issues.rpath.com/browse/RPL-1487
External Source: XF
Name: gimp-unpackpixeldata-code-execution(35246)
Hyperlink:http://xforce.iss.net/xforce/xfdb/35246
External Source: UBUNTU
Name: USN-480-1
Hyperlink:http://www.ubuntu.com/usn/usn-480-1
External Source: SLACKWARE
Name: SSA:2007-222-01
Hyperlink:http://www.slackware.org/security/viewer.php?l=slackware-security&y=2007&m=slackware-security.360191
External Source: REDHAT
Name: RHSA-2007:0513
Hyperlink:http://www.redhat.com/support/errata/RHSA-2007-0513.html
External Source: SUSE
Name: SUSE-SR:2007:015
Hyperlink:http://www.novell.com/linux/security/advisories/2007_15_sr.html
External Source: MANDRIVA
Name: MDKSA-2007:170
Hyperlink:http://www.mandriva.com/security/advisories?name=MDKSA-2007:170
External Source: VUPEN
Name: ADV-2007-4241
Hyperlink:http://www.frsirt.com/english/advisories/2007/4241
External Source: DEBIAN
Name: DSA-1335
Hyperlink:http://www.debian.org/security/2007/dsa-1335
External Source: SUNALERT
Name: 201320
Hyperlink:http://sunsolve.sun.com/search/document.do?assetkey=1-66-201320-1
External Source: SUNALERT
Name: 103170
Hyperlink:http://sunsolve.sun.com/search/document.do?assetkey=1-26-103170-1
External Source: GENTOO
Name: GLSA-200707-09
Hyperlink:http://security.gentoo.org/glsa/glsa-200707-09.xml
External Source: SECUNIA
Name: 28114
Hyperlink:http://secunia.com/advisories/28114
External Source: SECUNIA
Name: 26939
Hyperlink:http://secunia.com/advisories/26939
External Source: SECUNIA
Name: 26575
Hyperlink:http://secunia.com/advisories/26575
External Source: SECUNIA
Name: 26384
Hyperlink:http://secunia.com/advisories/26384
External Source: SECUNIA
Name: 26215
Hyperlink:http://secunia.com/advisories/26215
External Source: SECUNIA
Name: 26132
Hyperlink:http://secunia.com/advisories/26132
External Source: SECUNIA
Name: 26044
Hyperlink:http://secunia.com/advisories/26044
External Source: SECUNIA
Name: 25949
Hyperlink:http://secunia.com/advisories/25949
External Source: CONFIRM
Name: http://issues.foresightlinux.org/browse/FL-457
Hyperlink:http://issues.foresightlinux.org/browse/FL-457

Vulnerable software and versions

Nav control imageConfiguration 1
spacerNav control imageAND
spacerspacerNav control imageOR
spacerspacerline trunkNav control imagecpe:/o:ubuntu:ubuntu_linux:6.06_lts::amd64
spacerspacerline trunkNav control imagecpe:/o:ubuntu:ubuntu_linux:6.06_lts::i386
spacerspacerline trunkNav control imagecpe:/o:ubuntu:ubuntu_linux:6.06_lts::powerpc
spacerspacerline trunkNav control imagecpe:/o:ubuntu:ubuntu_linux:6.06_lts::sparc
spacerspacerline trunkNav control imagecpe:/o:ubuntu:ubuntu_linux:6.10::amd64
spacerspacerline trunkNav control imagecpe:/o:ubuntu:ubuntu_linux:6.10::i386
spacerspacerline trunkNav control imagecpe:/o:ubuntu:ubuntu_linux:6.10::powerpc
spacerspacerline trunkNav control imagecpe:/o:ubuntu:ubuntu_linux:6.10::sparc
spacerspacerline trunkNav control imagecpe:/o:ubuntu:ubuntu_linux:7.04::amd64
spacerspacerline trunkNav control imagecpe:/o:ubuntu:ubuntu_linux:7.04::i386
spacerspacerline trunkNav control imagecpe:/o:ubuntu:ubuntu_linux:7.04::powerpc
spacerspacerline trunkNav control imagecpe:/o:ubuntu:ubuntu_linux:7.04::sparc
spacerspacerNav control imageOR
spacerspacerspacerNav control image* cpe:/a:the_gimp_team:gimp:1.2.5
spacerspacerspacerNav control image* cpe:/a:the_gimp_team:gimp:2.2.10
spacerspacerspacerNav control image* cpe:/a:the_gimp_team:gimp:2.2.11
spacerspacerspacerNav control image* cpe:/a:the_gimp_team:gimp:2.2.12
spacerspacerspacerNav control image* cpe:/a:the_gimp_team:gimp:2.2.14
spacerspacerspacerNav control image* cpe:/a:the_gimp_team:gimp:2.2.15
spacerspacerspacerNav control image* cpe:/a:the_gimp_team:gimp:2.2.4
spacerspacerspacerNav control image* cpe:/a:the_gimp_team:gimp:2.2.6
spacerspacerspacerNav control image* cpe:/a:the_gimp_team:gimp:2.2.8
* Denotes Vulnerable Software
* Changes related to vulnerability configurations

Technical Details

Vulnerability Type (View All)
CVE Standard Vulnerability Entry:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2949