← back
CVE-2006-3376

CVE-2006-3376

EPSS 7.7%
Integer overflow in player.c in libwmf 0.2.8.4, as used in multiple products including (1) wv, (2) abiword, (3) freetype, (4) gimp, (5) libgsf, and (6) imagemagick allows remote attackers to execute arbitrary code via the MaxRecordSize header field in a WMF file.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://rhn.redhat.com/errata/RHSA-2006-0597.htmlhttp://secunia.com/advisories/20921http://secunia.com/advisories/21064http://secunia.com/advisories/21261http://secunia.com/advisories/21419http://secunia.com/advisories/21459http://secunia.com/advisories/21473http://secunia.com/advisories/22311http://security.gentoo.org/glsa/glsa-200608-17.xmlhttp://securityreason.com/securityalert/1190http://securitytracker.com/id?1016518https://exchange.xforce.ibmcloud.com/vulnerabilities/27516