VMware Player: Update to Cairo (VMSA-2008-0014) (CVE-2007-5503)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | November 29, 2007 | November 30, 2013 | February 13, 2015 |
Description
Multiple integer overflows in Cairo before 1.4.12 might allow remote attackers to execute arbitrary code, as demonstrated using a crafted PNG image with large width and height values, which is not properly handled by the read_png function.
Scan For This Vulnerability
Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities
References
Solution
vmware-player-upgrade-2_0_5Related Vulnerabilities
- SUSE Linux Security Advisory: SUSE-SR:2008:003
- VMware Workstation: Update to Cairo (VMSA-2008-0014) (CVE-2007-5503)
- RHSA-2007:1078: cairo security update
- SUSE-SR:2008:003:vuln3: cairo integer overflows in PNG decoder
- VMware Fusion: Update to Cairo (VMSA-2008-0014) (CVE-2007-5503)
- USN-550-1: Cairo vulnerability
- Gentoo Linux: CVE-2007-5503: VMware Player, Server, Workstation: Multiple vulnerabilities
- SUSE Linux Security Vulnerability: CVE-2007-5503
- CESA-2007:1078: cairo security update