What is the severity of CVE-2012-3402?

CVE-2012-3402 is classified as a high severity vulnerability due to its ability to cause a heap-based buffer overflow.

How do I fix CVE-2012-3402?

To mitigate CVE-2012-3402, users should upgrade to a version of GIMP later than 2.2.13.

What software is affected by CVE-2012-3402?

CVE-2012-3402 affects GIMP versions up to and including 2.2.13.

What type of attacks can be executed using CVE-2012-3402?

An attacker can exploit CVE-2012-3402 by crafting a malicious PSD file that can overflow the heap and potentially execute arbitrary code.

What is the nature of the vulnerability in CVE-2012-3402?

CVE-2012-3402 is a heap-based buffer overflow flaw found in the Adobe Photoshop PSD plug-in for GIMP.

Vulnerability/
CVE-2012-3402

medium

6.8

CWE

119 190

10/7/2012

25/8/2012

13/2/2023

CVE-2012-3402: Buffer Overflow

First published: Tue Jul 10 2012(Updated: )

A heap-based buffer overflow flaw was found in the way Adobe Photoshop(tm) PSD plug-in of Gimp, the GNU Image Manipulation Program, performed decoding of headers, when loading certain Adobe Photoshop image files. A remote attacker could provide a specially-crafted PSD image file that, when opened in Gimp would lead to PSD plug-in crash or, potentially, arbitrary code execution with the privileges of the user running gimp executable. This issue was found by Jan Lieskovsky of the Red Hat Security Response Team

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
GIMP	<=2.2.13

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2012-3402?
CVE-2012-3402 is classified as a high severity vulnerability due to its ability to cause a heap-based buffer overflow.
How do I fix CVE-2012-3402?
To mitigate CVE-2012-3402, users should upgrade to a version of GIMP later than 2.2.13.
What software is affected by CVE-2012-3402?
CVE-2012-3402 affects GIMP versions up to and including 2.2.13.
What type of attacks can be executed using CVE-2012-3402?
An attacker can exploit CVE-2012-3402 by crafting a malicious PSD file that can overflow the heap and potentially execute arbitrary code.
What is the nature of the vulnerability in CVE-2012-3402?
CVE-2012-3402 is a heap-based buffer overflow flaw found in the Adobe Photoshop PSD plug-in for GIMP.

collector/redhat-bugzilla
alias/CVE-2012-3402
agent/type
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
agent/event
agent/severity
agent/references
agent/weakness
agent/author
agent/tags
agent/description
collector/nvd-index
agent/software-canonical-lookup-request
vendor/gimp
canonical/gimp
version/gimp/2.2.13

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.