Vulnerability Description
Heap-based buffer overflow in the read_rle16 function in imagetops in CUPS before 1.3.9 allows remote attackers to execute arbitrary code via an SGI image with malformed Run Length Encoded (RLE) data containing a small image and a large row count.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Apple | Cups | <= 1.3.8 |
Related Weaknesses (CWE)
References
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=753
- http://lists.opensuse.org/opensuse-security-announce/2008-10/msg00006.html
- http://secunia.com/advisories/32084Vendor Advisory
- http://secunia.com/advisories/32226Vendor Advisory
- http://secunia.com/advisories/32284Vendor Advisory
- http://secunia.com/advisories/32292Vendor Advisory
- http://secunia.com/advisories/32316Vendor Advisory
- http://secunia.com/advisories/32331
- http://secunia.com/advisories/33085
- http://secunia.com/advisories/33111
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-261088-1
- http://support.avaya.com/elmodocs2/security/ASA-2008-470.htm
- http://www.cups.org/articles.php?L575
- http://www.cups.org/str.php?L2918Vendor Advisory
- http://www.debian.org/security/2008/dsa-1656
FAQ
What is CVE-2008-3639?
CVE-2008-3639 is a vulnerability with a CVSS score of 7.5 (HIGH). Heap-based buffer overflow in the read_rle16 function in imagetops in CUPS before 1.3.9 allows remote attackers to execute arbitrary code via an SGI image with malformed Run Length Encoded (RLE) data ...
How severe is CVE-2008-3639?
CVE-2008-3639 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-3639?
Check the references section above for vendor advisories and patch information. Affected products include: Apple Cups.