CVE-2023-44443

GIMP PSP File Parsing Integer Overflow Remote Code Execution Vulnerability

CVSS 7.8 HIGHEPSS 93.0%CWE-190

In short

GIMP has a flaw when opening PSP image files that allows attackers to run malicious code on your computer. An attacker can create a specially crafted PSP file that, when opened in GIMP, executes harmful programs.

Technical detail

An integer overflow vulnerability exists in GIMP's PSP file parser due to insufficient validation of user-supplied data. This allows a remote attacker to craft a malicious PSP file that triggers a memory write vulnerability, enabling arbitrary code execution in the context of the GIMP process when the file is opened.

Summary generated and translated by AI from the official description.

GIMP PSP File Parsing Integer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GIMP. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSP files. The issue results from the lack of proper validation of user-supplied data, which can result in an integer overflow before writing to memory. An attacker can leverage this vulnerability to execute code in the context of the current process. . Was ZDI-CAN-22096.

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Affected products

GIMP · GIMP

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.gimp.org/news/2023/11/07/gimp-2-10-36-released/https://www.zerodayinitiative.com/advisories/ZDI-23-1593/