Search for vulnerabilities
Vulnerability details: VCID-tts7-1t1r-aaac
Vulnerability ID VCID-tts7-1t1r-aaac
Aliases CVE-2012-2763
Summary Buffer overflow in the readstr_upto function in plug-ins/script-fu/tinyscheme/scheme.c in GIMP 2.6.12 and earlier, and possibly 2.6.13, allows remote attackers to execute arbitrary code via a long string in a command to the script-fu server.
Status Published
Exploitability 2.0
Weighted Severity 6.8
Risk 10.0
Affected and Fixed Packages Package Details
Weaknesses (2)
CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CWE-122 Heap-based Buffer Overflow
System Score Found at
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.86967 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.90388 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.95590 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.95962 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.95962 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.95962 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.96351 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.96351 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.96351 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.96351 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.96351 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.96351 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.96351 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
epss 0.96401 https://api.first.org/data/v1/epss?cve=CVE-2012-2763
rhbs low https://bugzilla.redhat.com/show_bug.cgi?id=824541
cvssv2 7.5 https://nvd.nist.gov/vuln/detail/CVE-2012-2763
Reference id Reference type URL
http://git.gnome.org/browse/gimp/commit/?h=gimp-2-6&id=744f7a4a2b5acb8b531a6f5dd8744ebb95348fc2
http://lists.opensuse.org/opensuse-security-announce/2012-09/msg00000.html
http://lists.opensuse.org/opensuse-updates/2012-09/msg00043.html
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2012-2763.json
https://api.first.org/data/v1/epss?cve=CVE-2012-2763
https://bugzilla.gnome.org/show_bug.cgi?id=679215
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2763
http://secunia.com/advisories/50737
http://security.gentoo.org/glsa/glsa-201209-23.xml
http://www.openwall.com/lists/oss-security/2012/05/31/1
http://www.openwall.com/lists/oss-security/2012/07/01/1
824541 https://bugzilla.redhat.com/show_bug.cgi?id=824541
cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:* https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:2.3:a:gimp:gimp:*:*:*:*:*:*:*:*
CVE-2012-2763 https://nvd.nist.gov/vuln/detail/CVE-2012-2763
CVE-2012-2763;OSVDB-82429 Exploit https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/dos/18956.c
CVE-2012-2763;OSVDB-82429 Exploit https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/windows/remote/18973.rb
CVE-2012-2763;OSVDB-82429 Exploit http://www.reactionpenetrationtesting.co.uk/advisories/scriptfu-buffer-overflow-GIMP-2.6.html
GLSA-201209-23 https://security.gentoo.org/glsa/201209-23
Data source Exploit-DB
Date added June 2, 2012
Description GIMP script-fu - Server Buffer Overflow (Metasploit)
Ransomware campaign use Known
Source publication date June 2, 2012
Exploit type remote
Platform windows
Source update date Oct. 27, 2016
Source URL http://www.reactionpenetrationtesting.co.uk/advisories/scriptfu-buffer-overflow-GIMP-2.6.html
Data source Metasploit
Description This module exploits a buffer overflow in the script-fu server component on GIMP <= 2.6.12. By sending a specially crafted packet, an attacker may be able to achieve remote code execution under the context of the user. This module has been tested on GIMP for Windows from installers provided by Jernej Simoncic.
Note 
{}
Ransomware campaign use Unknown
Source publication date May 18, 2012
Platform Windows
Source URL https://github.com/rapid7/metasploit-framework/tree/master/modules/exploits/windows/misc/gimp_script_fu.rb
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P Found at https://nvd.nist.gov/vuln/detail/CVE-2012-2763
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Exploit Prediction Scoring System (EPSS)
Percentile 0.99393
EPSS Score 0.86967
Published At March 28, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
There are no relevant records.