CVE-2007-2741 : Stack-based buffer overflow in Little CMS (lcms) before 1.15 allows remote attac

Stack-based buffer overflow in Little CMS (lcms) before 1.15 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted ICC profile in a JPG file.

Published 2007-05-17 19:30:00

Updated 2025-04-09 00:30:58

Source MITRE

View at NVD, CVE.org

Vulnerability category: OverflowExecute codeDenial of service

Products affected by CVE-2007-2741

Littlecms » Lcms
Versions up to, including, (<=) 1.14
cpe:2.3:a:littlecms:lcms:*:*:*:*:*:*:*:*
Matching versions
Littlecms » Lcms » Version: 1.07
cpe:2.3:a:littlecms:lcms:1.07:*:*:*:*:*:*:*
Matching versions
Littlecms » Lcms » Version: 1.13
cpe:2.3:a:littlecms:lcms:1.13:*:*:*:*:*:*:*
Matching versions
Littlecms » Lcms » Version: 1.11
cpe:2.3:a:littlecms:lcms:1.11:*:*:*:*:*:*:*
Matching versions
Littlecms » Lcms » Version: 1.12
cpe:2.3:a:littlecms:lcms:1.12:*:*:*:*:*:*:*
Matching versions
Littlecms » Lcms » Version: 1.08
cpe:2.3:a:littlecms:lcms:1.08:*:*:*:*:*:*:*
Matching versions
Littlecms » Lcms » Version: 1.09
cpe:2.3:a:littlecms:lcms:1.09:*:*:*:*:*:*:*
Matching versions
Littlecms » Lcms » Version: 1.10
cpe:2.3:a:littlecms:lcms:1.10:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2007-2741

EPSS FAQ

14.97%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 94 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2007-2741

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
9.3	HIGH	AV:N/AC:M/Au:N/C:C/I:C/A:C	8.6	10.0	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2007-2741

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

Assigned by: nvd@nist.gov (Primary)

Vendor statements for CVE-2007-2741

Red Hat 2008-12-03

Not vulnerable. This issue did not affect the versions of lcms as shipped with Red Hat Enterprise Linux 5.

References for CVE-2007-2741

http://osvdb.org/36179
https://exchange.xforce.ibmcloud.com/vulnerabilities/34331
http://www.securityfocus.com/bid/24001

Exploit;Patch
http://scary.beasts.org/security/CESA-2007-001.html

Exploit
http://secunia.com/advisories/32282

Vendor Advisory
http://www.ubuntu.com/usn/usn-652-1
http://secunia.com/advisories/25294

Patch;Vendor Advisory
http://www.vupen.com/english/advisories/2007/1837

Vendor Advisory
http://secunia.com/advisories/27756

About Secunia Research | Flexera
Vendor Advisory

CVEs referencing this url
http://www.mandriva.com/security/advisories?name=MDKSA-2007:238
http://www.novell.com/linux/security/advisories/2007_24_sr.html

Security - Support | SUSE

CVEs referencing this url