OpenPKG Security Advisory
OpenPKG-SA-2006.031
Publisher Name: OpenPKG GmbH Publisher Home: http://openpkg.com/ Advisory Id (public): OpenPKG-SA-2006.031 Advisory Type: OpenPKG Security Advisory (SA) Advisory Directory: http://openpkg.com/go/OpenPKG-SA Advisory Document: http://openpkg.com/go/OpenPKG-SA-2006.031 Advisory Published: 2008-10-06 22:55 UTC Issue Id (internal): OpenPKG-SI-20061104.03 Issue First Created: 2006-11-04 Issue Last Modified: 2006-12-07 Issue Revision: 07
Subject Name: libwmf Subject Summary: Windows Metafile Format (WMF) Conversion Library Subject Home: http://www.wvware.com/libwmf.html Subject Versions: * <= 0.2.8.4 Vulnerability Id: CVE-2006-3376 Vulnerability Scope: global (not OpenPKG specific) Attack Feasibility: run-time Attack Vector: local system Attack Impact: arbitrary code execution Description: According to a BUGTRAQ posting [0], a vulnerability exists in the WMF format management library libwmf [1]. The vulnerability consists of an integer overflow which allows remote attackers to execute arbitrary code via the "MaxRecordSize" header field in a WMF format file. References: [0] http://www.securityfocus.com/archive/1/archive/1/438803/100/0/threaded [1] http://wvware.sourceforge.net/libwmf.html
Primary Package Name: libwmf Primary Package Home: http://openpkg.org/go/package/libwmf Affected Distribution: Affected Branch: Affected Package: OpenPKG Enterprise E1.0-SOLID libwmf-0.2.8.4-E1.0.0 OpenPKG Community 2-STABLE-20061018 libwmf-0.2.8.4-2.20061018 OpenPKG Community CURRENT libwmf-0.2.8.4-20061016 Corrected Distribution: Corrected Branch: Corrected Package: OpenPKG Enterprise E1.0-SOLID libwmf-0.2.8.4-E1.0.1 OpenPKG Community 2-STABLE-20061018 libwmf-0.2.8.4-2.20061104 OpenPKG Community CURRENT libwmf-0.2.8.4-20061104
