Vigil@nce: Xfig, buffer overflow via a color
December 2010 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/
SYNTHESIS OF THE VULNERABILITY
An attacker can create a malicious FIG document, and then invite
the victim to open it with Xfig, in order to execute code on his
computer.
– Severity: 2/4
– Creation date: 03/12/2010
DESCRIPTION OF THE VULNERABILITY
The Xfig program is used to draw.
A draw in FIG format contains a table defining colors. However, if
this table is malformed, a buffer overflow occurs in Xfig.
An attacker can therefore create a malicious FIG document, and
then invite the victim to open it with Xfig, in order to execute
code on his computer.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/Xfig-buffer-overflow-via-a-color-10177