vendor:
GTK2 Library
by:
Unknown
5.5
CVSS
MEDIUM
Denial-of-Service
20
CWE
Product Name: GTK2 Library
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: YES
Related CWE: CVE-2007-3998
CPE: a:gtk:gtk
Metasploit:
https://www.rapid7.com/db/vulnerabilities/php-cve-2007-3998/, https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2007-0917/, https://www.rapid7.com/db/vulnerabilities/gentoo-linux-cve-2007-3998/, https://www.rapid7.com/db/vulnerabilities/suse-cve-2007-3998/, https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2007-0891/, https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2007-0889/, https://www.rapid7.com/db/vulnerabilities/linuxrpm-RHSA-2007-0890/, https://www.rapid7.com/db/vulnerabilities/linuxrpm-CESA-2007-0890/, https://www.rapid7.com/db/vulnerabilities/linuxrpm-CESA-2007-0889/
Platforms Tested: Linux, Unix, Windows
2007
Denial-of-Service Vulnerability in gtk2 Library
Applications using the gtk2 library may be prone to a denial-of-service vulnerability because the library fails to handle malformed image data. An attacker can exploit this issue to crash applications on a victim's computer.
Mitigation:
Apply the latest security patches or updates provided by the vendor.