• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Download VulnDetect Installer
  • Login
SecTeer VulnDetect & PatchPro Support Forum VulnDetect
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Download VulnDetect Installer
  • Login

[Added] GIMP (Portable) - App-Request

Scheduled Pinned Locked Moved Added App Requests
app-request
8 Posts 2 Posters 2.8k Views 2 Watching
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • O Offline
    OLLI_S Community Moderator
    last edited by OLLI_S 12 Apr 2018, 20:23 31 Jul 2018, 19:31

    Name of the app:

    • GIMP (Portable)

    File Path:

    • D:\PortableApps\PortableApps\GIMPPortable\App\gimp\bin\gimp-2.10.exe

    Developer:

    • Spencer Kimball, Peter Mattis and the GIMP Development Team

    Website:

    • https://www.gimp.org/

    Download Site:

    • https://www.gimp.org/downloads/

    Version number displayed in the app:

    • 2.10.4 (this is the field Product Version String)

    App-Icon: in ICO format

    0_1533065277245_GIMP_Icon_256x256.ico


    Here is the version information extracted from gimp-2.10.exe:

    File name and path:     D:\PortableApps\PortableApps\GIMPPortable\App\gimp\bin\gimp-2.10.exe
    Product Name:           GNU Image Manipulation Program
    Internal Name:          gimp-2.10
    Original Filename:      gimp-2.10.exe
    
    File Description:       GNU Image Manipulation Program
    Company:                Spencer Kimball, Peter Mattis and the GIMP Development Team
    Legal Copyright:        Copyright © 1995-2018
    Legal Trademarks:       
    Comments:               
    
    File Version String:    2.10.4.0
    File Version:           2.10.4.0
    Product Version String: 2.10.4
    Product Version:        2.10.4.0
    
    1 Reply Last reply Reply Quote 0
    • T Offline
      Tom VulnDetect Team Member
      last edited by 9 Aug 2018, 13:57

      Generic detection added.
      However, GIMP seems to be vulnerable to this old vuln:
      CVE-2017-17789 in file-psp.exe
      There is no immediate announcements or entries in the changelog about this being fixed.
      If someone has more information, please share it.

      /Tom
      Download the latest SecTeer VulnDetect agent here:
      https://vulndetect.com/dl/secteerSetup.exe

      1 Reply Last reply Reply Quote 0
      • T Offline
        Tom VulnDetect Team Member
        last edited by 9 Aug 2018, 14:00

        Also, detection will fail when they go to version 2.12 or whatever the next minor release is called, since they change the filename.
        We will consider if this should be detected automatically, since there is a few apps that do it this way (though it mostly seems to be an old way of doing it).

        /Tom
        Download the latest SecTeer VulnDetect agent here:
        https://vulndetect.com/dl/secteerSetup.exe

        1 Reply Last reply Reply Quote 0
        • O Offline
          OLLI_S Community Moderator
          last edited by 9 Aug 2018, 19:00

          GIMP is detected correctly, issue seems to be solved.
          @Tom should I close it or do you want to leave it opened (because of the filename issue)?

          T 1 Reply Last reply 10 Aug 2018, 08:34 Reply Quote 0
          • T Offline
            Tom VulnDetect Team Member @OLLI_S
            last edited by 10 Aug 2018, 08:34

            @olli_s We can close it

            /Tom
            Download the latest SecTeer VulnDetect agent here:
            https://vulndetect.com/dl/secteerSetup.exe

            1 Reply Last reply Reply Quote 0
            • O Offline
              OLLI_S Community Moderator
              last edited by 10 Aug 2018, 20:50

              OK, I mark it as fixed

              1 Reply Last reply Reply Quote 0
              • T Offline
                Tom VulnDetect Team Member
                last edited by 4 Dec 2018, 12:12

                Found a reference to the open vuln, it was fixed back in 2.10.0-RC1

                States on versions 2.10.0 through 2.10.8 has been updated to reflect this

                /Tom
                Download the latest SecTeer VulnDetect agent here:
                https://vulndetect.com/dl/secteerSetup.exe

                1 Reply Last reply Reply Quote 0
                • O Offline
                  OLLI_S Community Moderator
                  last edited by 4 Dec 2018, 20:22

                  Version 2.10.6 is now shown.
                  Issue solved!

                  1 Reply Last reply Reply Quote 0
                  • First post
                    Last post
                  Download SecTeer Personal VulnDetect - an alternative to the long lost Secunia PSI

                  Please see our Privacy and Data Processing Policy
                  Sponsored and operated by SecTeer | VulnDetect is a replacement for the EoL Secunia PSI
                  Forum software by NodeBB