CVE-2005-0654

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 02-05-2005 06:00

Last modified: - 07-02-2022 06:26

Total changes: - 2

Description

gifload.exe in GIMP 2.0.5, 2.2.3, and possibly 2.2.4 allows remote attackers or local users to cause a denial of service (application crash) via the image descriptor (1) height or (2) width fields set to zero.

Common Vulnerability Scoring System (CVSS)

AV:N/AC:L/Au:N/C:N/I:N/A:P

Low

Attack complexity

Network

Attack vector

Low

Availability

None

Confidentiality

None

Integrity

Privileges required

Scope

User interaction

5.0

Base score

10.0

2.9

Exploitability score

Impact score

Verification logic

vendor=gimp AND product=gimp AND version=2.0.5

vendor=gimp AND product=gimp AND version=2.2.3

vendor=gimp AND product=gimp AND version=2.2.4

Reference

20050304 GIMP gifload.exe GIF file (image width)*(image height)==0 DOS vulnerability-Exploit, Mailing List, Third Party Advisory

Keywords

CVE-2005-0654

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2005-0654

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures