Heap-based buffer overflow in the BMP reader (bmp.c) in Imager perl module (libimager-perl) 0.45 through 0.56 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via crafted 8-bit/pixel compressed BMP files.
Max CVSS
7.8
EPSS Score
9.30%
Published
2007-05-02
Updated
2017-07-29
Imager (libimager-perl) before 0.50 allows user-assisted attackers to cause a denial of service (segmentation fault) by writing a 2- or 4-channel JPEG image (or a 2-channel TGA image) to a scalar, which triggers a NULL pointer dereference.
Max CVSS
2.6
EPSS Score
1.25%
Published
2006-04-10
Updated
2017-07-20
2 vulnerabilities found