Multiple integer overflows in LittleCMS (aka lcms or liblcms) before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party information.
2009-03-23T14:19:12.500
2025-04-09T00:30:58.490
Deferred
CVSSv2: 9.3 (HIGH)
AV:N/AC:M/Au:N/C:C/I:C/A:C
8.6
10.0
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | gimp | gimp | < 2.9.2 | Yes |
Application | mozilla | firefox | 3.1 | Yes |
Application | sun | openjdk | ≤ 7 | Yes |
Application | littlecms | little_cms | ≤ 1.17 | Yes |