Inkscape 0.41/0.42 - '.SVG' Image Buffer Overflow

Author: Joxean Koret
type: remote
platform: linux
port: 
date_added: 2005-11-21  
date_updated: 2013-07-22  
verified: 1  
codes: CVE-2005-3737;OSVDB-21001  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 26540.txt  

source: https://www.securityfocus.com/bid/15507/info

Inkscape is prone to a buffer overflow vulnerability. This issue is due to a failure in the application to do proper bounds checking on user-supplied data before copying it into a finite sized buffer.

When the application processes a malformed SVG image file, it results in a buffer overflow. An attacker can exploit this vulnerability to execute arbitrary code in the context of the victim user.

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/26540.svg