Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in progressive applications, might allow remote attackers to execute arbitrary code via a PNG image that triggers an additional data row.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Configuration 5 (hide)
|
Configuration 6 (hide)
|
Configuration 7 (hide)
|
Configuration 8 (hide)
|
Configuration 9 (hide)
|
History
07 Nov 2023, 02:05
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2010-06-30 18:30
Updated : 2024-02-28 11:41
NVD link : CVE-2010-1205
Mitre link : CVE-2010-1205
CVE.ORG link : CVE-2010-1205
JSON object : View
Products Affected
vmware
- player
- workstation
apple
- safari
- itunes
- mac_os_x
- iphone_os
- mac_os_x_server
opensuse
- opensuse
suse
- linux_enterprise_server
debian
- debian_linux
libpng
- libpng
mozilla
- seamonkey
- firefox
- thunderbird
canonical
- ubuntu_linux
fedoraproject
- fedora
- chrome
CWE
CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')