APP: Trolltech Qt BMP Handling Overflow
This signature detects attempts to exploit a flaw in the Trolltech Qt image handling subsystem, which is used by the KDE Graphical Environment, commonly found in Linux and other Unix-based systems. A known vulnerability exists in the read_dib function that does not perform proper bounds checking of RLE data from a BMP file. An attacker could exploit this flaw to crash a system or possibly install malicious software when a user attempts to view a specially crafted BMP.
Extended Description
Multiple heap overflows have been reported to exist in the Qt QImage library. These issues may be triggered when handling malformed images of various types, potentially causing a denial of service in applications that use the library to render images. Remote code execution is also possible.
Affected Products
Suse linux_desktop
References
BugTraq: 10977
CVE: CVE-2004-0691
URL: http://www.juniper.net/security/auto/vulnerabilities/vuln1718.html http://rhn.redhat.com/errata/RHSA-2004-414.html
Short Name
APP:TROLLTECH-QT-BMP-OF
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
BMP CVE-2004-0691 Handling Overflow Qt Trolltech bid:10977
Release Date
08/26/2004
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Red_hat
Suse
Gentoo
Sun
Avaya
Trolltech
CVSS Score
7.5