Vulnerability Details : CVE-2007-5137
Buffer overflow in the ReadImage function in generic/tkImgGIF.c in Tcl (Tcl/Tk) 8.4.13 through 8.4.15 allows remote attackers to execute arbitrary code via multi-frame interlaced GIF files in which later frames are smaller than the first. NOTE: this issue is due to an incorrect patch for CVE-2007-5378.
Vulnerability category: OverflowExecute code
Products affected by CVE-2007-5137
- cpe:2.3:a:tcl_tk:tcl_tk:8.4.15:*:*:*:*:*:*:*
- cpe:2.3:a:tcl_tk:tcl_tk:8.4.13:*:*:*:*:*:*:*
- cpe:2.3:a:tcl_tk:tcl_tk:8.4.14:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2007-5137
8.05%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 91 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2007-5137
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
8.6
|
6.4
|
NIST |
CWE ids for CVE-2007-5137
-
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.Assigned by: nvd@nist.gov (Primary)
Vendor statements for CVE-2007-5137
-
Red Hat 2007-10-09Red Hat is aware of this issue and is tracking it via the following bug: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=CVE-2007-5137 The Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw.
References for CVE-2007-5137
-
http://secunia.com/advisories/34297
About Secunia Research | Flexera
-
http://secunia.com/advisories/27182
About Secunia Research | Flexera
-
http://secunia.com/advisories/27086
About Secunia Research | Flexera
-
http://secunia.com/advisories/27207
About Secunia Research | Flexera
-
http://www.mandriva.com/security/advisories?name=MDKSA-2007:200
Mandriva
-
http://www.attrition.org/pipermail/vim/2007-October/001826.html
[VIM] clarification on multiple Tk overflow issues
-
http://bugs.gentoo.org/show_bug.cgi?id=192539
192539 – dev-lang/tk < 8.4.15-r1 GIF ReadImage() Buffer overflow vulnerability (CVE-2007-5137)
-
http://secunia.com/advisories/27295
About Secunia Research | Flexera
-
http://secunia.com/advisories/29069
About Secunia Research | Flexera
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9540
404 Not Found
-
http://www.redhat.com/support/errata/RHSA-2008-0136.html
Support
-
http://www.debian.org/security/2009/dsa-1743
[SECURITY] [DSA 1743-1] New libtk-img packages fix arbitrary code execution
-
http://secunia.com/advisories/26942
About Secunia Research | FlexeraPatch;Vendor Advisory
-
http://sourceforge.net/project/shownotes.php?release_id=541207
Page not found - SourceForge.netPatch
-
http://security.gentoo.org/glsa/glsa-200710-07.xml
Tk: Buffer overflow (GLSA 200710-07) — Gentoo security
-
http://www.securityfocus.com/bid/25826
-
http://secunia.com/advisories/27229
About Secunia Research | Flexera
-
http://www.ubuntu.com/usn/usn-529-1
USN-529-1: Tk vulnerability | Ubuntu security notices | Ubuntu
-
http://www.novell.com/linux/security/advisories/2007_20_sr.html
404 Page Not Found | SUSE
-
https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00261.html
[SECURITY] Fedora 7 Update: tk-8.4.13-6.fc7
Jump to