Cdelia Software ImageProcessing Malformed BMP File Denial of Service Vulnerability

Bugtraq ID:	23629
Class:	Failure to Handle Exceptional Conditions
CVE:
Remote:	Yes
Local:	No
Published:	Apr 24 2007 12:00AM
Updated:	Apr 24 2007 08:40PM
Credit:	Dr.Ninux is credited with the discovery of this vulnerability.
Vulnerable:	Cdelia Software ImageProcessing 0
Not Vulnerable:

Cdelia Software ImageProcessing Malformed BMP File Denial of Service Vulnerability

Cdelia Software ImageProcessing is prone to a denial-of-service vulnerability because the application fails to handle exceptional conditions.

An attacker can exploit this issue to crash the affected application, denying service to legitimate users.

Cdelia Software ImageProcessing Malformed BMP File Denial of Service Vulnerability

An attacker can exploit this issue by enticing an unsuspecting victim to open a specially crafted BMP file.

The following exploit code is available.

• /data/vulnerabilities/exploits/23629.c

Cdelia Software ImageProcessing Malformed BMP File Denial of Service Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:[email protected].

Cdelia Software ImageProcessing Malformed BMP File Denial of Service Vulnerability

References:

• Cdella Software ImageProcessing Homepage (Cdella Software)
  
• ImageProcessing ... Local (Denial of Service Exploit) ([email protected])