CVE-2006-3376

Impact:
Moderate
Public Date:
2006-06-30
Bugzilla:
1618139: CVE-2006-3376 security flaw

The MITRE CVE dictionary describes this issue as:

Integer overflow in player.c in libwmf 0.2.8.4, as used in multiple products including (1) wv, (2) abiword, (3) freetype, (4) gimp, (5) libgsf, and (6) imagemagick allows remote attackers to execute arbitrary code via the MaxRecordSize header field in a WMF file.

Find out more about CVE-2006-3376 from the MITRE CVE dictionary dictionary and NIST NVD.

Statement

Red Hat Enterprise Linux 5 is not vulnerable to this issue as it contains a backported patch.

Red Hat Security Errata

Platform Errata Release Date
Red Hat Enterprise Linux 4 (libwmf) RHSA-2006:0597 2006-07-18
Last Modified

CVE description copyright © 2017, The MITRE Corporation