← back
CVE-2008-3639

CVE-2008-3639

EPSS 4.4%
Heap-based buffer overflow in the read_rle16 function in imagetops in CUPS before 1.3.9 allows remote attackers to execute arbitrary code via an SGI image with malformed Run Length Encoded (RLE) data containing a small image and a large row count.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=753http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00006.htmlhttp://secunia.com/advisories/32084http://secunia.com/advisories/32226http://secunia.com/advisories/32284http://secunia.com/advisories/32292http://secunia.com/advisories/32316http://secunia.com/advisories/32331http://secunia.com/advisories/33085http://secunia.com/advisories/33111https://exchange.xforce.ibmcloud.com/vulnerabilities/45789https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11464