#VU32760 Buffer overflow in Django - CVE-2012-3444

Cybersecurity Help s.r.o.

Published: 2012-07-31 | Updated: 2020-07-28

Vulnerability identifier: #VU32760

Vulnerability risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2012-3444

CWE-ID: CWE-119

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Django
Web applications / CMS

Vendor: Django Software Foundation

Description

The vulnerability allows a remote non-authenticated attacker to perform service disruption.

The get_image_dimensions function in the image-handling functionality in Django before 1.3.2 and 1.4.x before 1.4.1 uses a constant chunk size in all attempts to determine dimensions, which allows remote attackers to cause a denial of service (process or thread consumption) via a large TIFF image.

Mitigation
Install update from vendor's website.

Vulnerable software versions

Django: 1.3.1

External links
https://www.debian.org/security/2012/dsa-2529
https://www.mandriva.com/security/advisories?name=MDVSA-2012:143
https://www.openwall.com/lists/oss-security/2012/07/31/1
https://www.openwall.com/lists/oss-security/2012/07/31/2
https://www.ubuntu.com/usn/USN-1560-1
https://www.djangoproject.com/weblog/2012/jul/30/security-releases-issued/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Buffer overflow in py-django (Alpine package)

Buffer overflow in Django

Fedora EPEL 6 update for Django