Home

CVE-2008-0553

Description

Stack-based buffer overflow in the ReadImage function in tkImgGIF.c in Tk (Tcl/Tk) before 8.5.1 allows remote attackers to execute arbitrary code via a crafted GIF image, a similar issue to CVE-2006-4484.

Risk Information

Base Score
7.8
MODERATE
Vector
AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
6.015

Associated Vulnerability

VulnerabilityOS Platform
(RHSA-2008:0136) Moderate: tk security update tk-8.4.13-5.el5_1.1.i386.rpmLinux
(RHSA-2008:0136) Moderate: tk security update tk-8.4.13-5.el5_1.1.x86_64.rpmLinux
(RHSA-2008:0136) Moderate: tk security update tk-devel-8.4.13-5.el5_1.1.i386.rpmLinux
(RHSA-2008:0136) Moderate: tk security update tk-devel-8.4.13-5.el5_1.1.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234