Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-0010 — GTK vulnerability

14 documents9 sources
Severity
2.1LOWNVD
EPSS
0.9%
top 23.87%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Gnome GTK
Timeline
PublishedJan 24
Latest updateMay 1

Description

The GdkPixbufLoader function in GIMP ToolKit (GTK+) in GTK 2 (gtk2) before 2.4.13 allows context-dependent attackers to cause a denial of service (crash) via a malformed image file.

CVSS vector

AV:L/AC:L/C:N/I:N/A:PExploitability: 3.9 | Impact: 2.9

Affected Packages1 packages

â–¶NVDgnome/gtk< 2.4.13

🔴Vulnerability Details

3
GHSA
GHSA-p8m8-7wqx-pmvj: The GdkPixbufLoader function in GIMP ToolKit (GTK+) in GTK 2 (gtk2) before 2↗2022-05-01
â–¶
OSV
CVE-2007-0010: The GdkPixbufLoader function in GIMP ToolKit (GTK+) in GTK 2 (gtk2) before 2↗2007-01-24
â–¶
CVEList
CVE-2007-0010: The GdkPixbufLoader function in GIMP ToolKit (GTK+) in GTK 2 (gtk2) before 2↗2007-01-24
â–¶

💥Exploits & PoCs

2
Exploit-DB
Apple Mac OSX 10.4.8 (8L2127) - 'crashdump' Local Privilege Escalation↗2007-01-29
â–¶
Exploit-DB
GTK2 GDKPixBufLoader - Remote Denial of Service↗2007-01-24
â–¶

📋Vendor Advisories

3
Ubuntu
GTK vulnerability↗2007-02-01
â–¶
Red Hat
security flaw↗2007-01-10
â–¶
Debian
CVE-2007-0010: gtk+2.0 - The GdkPixbufLoader function in GIMP ToolKit (GTK+) in GTK 2 (gtk2) before 2.4.1...↗2007
â–¶

💬Community

5
Bugzilla
CVE-2007-0010 security flaw↗2018-08-16
â–¶
Bugzilla
CVE-2007-0010 GdbPixbufLoader fails to handle invalid input from Evolution correctly↗2006-12-10
â–¶
Bugzilla
CVE-2007-0010 GdbPixbufLoader fails to handle invalid input from Evolution correctly↗2006-12-08
â–¶
Bugzilla
CVE-2007-0010 GdbPixbufLoader fails to handle invalid input from Evolution correctly↗2006-12-08
â–¶
Bugzilla
CVE-2007-0010 GdbPixbufLoader fails to handle invalid input from Evolution correctly↗2006-12-07
â–¶
CVE-2007-0010 — Gnome GTK vulnerability | cvebase