CVE-2007-2459
Last modified
CVE-2007-2459 is a vulnerability of currently unknown severity. Heap-based buffer overflow in the BMP reader (bmp.c) in Imager perl module (libimager-perl) 0.45 through 0.56 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted 8-bit/pixel compressed BMP files.. EPSS estimates a 4.93% chance of exploitation in the next 30 days.
Description
Heap-based buffer overflow in the BMP reader (bmp.c) in Imager perl module (libimager-perl) 0.45 through 0.56 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted 8-bit/pixel compressed BMP files.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Tony Cook | Imager | 0.44 |
| Tony Cook | Imager | 0.44_1 |
| Tony Cook | Imager | 0.45 |
| Tony Cook | Imager | 0.45_2 |
| Tony Cook | Imager | 0.46 |
| Tony Cook | Imager | 0.47 |
| Tony Cook | Imager | 0.48 |
| Tony Cook | Imager | 0.49 |
| Tony Cook | Imager | 0.50 |
| Tony Cook | Imager | 0.51 |
| Tony Cook | Imager | 0.52 |
| Tony Cook | Imager | 0.53 |
| Tony Cook | Imager | 0.54 |
| Tony Cook | Imager | 0.55 |
| Tony Cook | Imager | 0.56 |
References
- http://secunia.com/advisories/25038Vendor Advisory
- http://secunia.com/advisories/28868Vendor Advisory
- http://secunia.com/advisories/25038Vendor Advisory
- http://secunia.com/advisories/28868Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2007-2459?
How severe is CVE-2007-2459?
How do I fix CVE-2007-2459?
Are you affected by CVE-2007-2459?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST