[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248149

 
 

909

 
 

194803

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2009-0040Date: (C)2009-02-22   (M)2024-02-22


The PNG reference library (aka libpng) before 1.0.43, and 1.2.x before 1.2.35, as used in pngcrush and other applications, allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file that triggers a free of an uninitialized pointer in (1) the png_read_png function, (2) pCAL chunk handling, or (3) setup of 16-bit gamma tables.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 6.8
Exploit Score: 8.6
Impact Score: 6.4
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL
  
Reference:
SUNALERT-1020521
http://www.securityfocus.com/archive/1/501767/100/0/threaded
http://www.securityfocus.com/archive/1/503912/100/0/threaded
http://www.securityfocus.com/archive/1/505990/100/0/threaded
SUNALERT-259989
BID-33827
SECUNIA-33970
SECUNIA-33976
BID-33990
SECUNIA-34137
SECUNIA-34140
SECUNIA-34143
SECUNIA-34145
SECUNIA-34152
SECUNIA-34210
SECUNIA-34265
SECUNIA-34272
SECUNIA-34320
SECUNIA-34324
SECUNIA-34388
SECUNIA-34462
SECUNIA-34464
SECUNIA-35074
SECUNIA-35258
SECUNIA-35302
SECUNIA-35379
SECUNIA-35386
SECUNIA-36096
ADV-2009-0469
ADV-2009-0473
ADV-2009-0632
ADV-2009-1297
ADV-2009-1451
ADV-2009-1462
ADV-2009-1522
ADV-2009-1560
ADV-2009-1621
ADV-2009-2172
APPLE-SA-2009-05-12
APPLE-SA-2009-06-08-1
APPLE-SA-2009-06-17-1
APPLE-SA-2009-08-05-1
DSA-1750
DSA-1830
FEDORA-2009-1976
FEDORA-2009-2045
FEDORA-2009-2882
FEDORA-2009-2884
GLSA-200903-28
GLSA-201209-25
MDVSA-2009:051
MDVSA-2009:075
MDVSA-2009:083
RHSA-2009:0315
RHSA-2009:0325
RHSA-2009:0333
RHSA-2009:0340
SSA:2009-083-02
SSA:2009-083-03
SUSE-SA:2009:012
SUSE-SA:2009:023
SUSE-SR:2009:005
TA09-133A
TA09-218A
VU#649212
http://sourceforge.net/mailarchive/message.php?msg_name=e56ccc8f0902181726i200f4bf0n20d919473ec409b7%40mail.gmail.com
http://lists.vmware.com/pipermail/security-announce/2009/000062.html
ftp://ftp.simplesystems.org/pub/png/src/libpng-1.2.34-ADVISORY.txt
http://downloads.sourceforge.net/libpng/libpng-1.2.34-ADVISORY.txt
http://sourceforge.net/project/shownotes.php?group_id=1689&release_id=662441
http://support.apple.com/kb/HT3549
http://support.apple.com/kb/HT3613
http://support.apple.com/kb/HT3639
http://support.apple.com/kb/HT3757
http://support.avaya.com/elmodocs2/security/ASA-2009-069.htm
http://support.avaya.com/elmodocs2/security/ASA-2009-208.htm
http://support.avaya.com/japple/css/japple?temp.documentID=366362&temp.productID=154235&temp.releaseID=361845&temp.bucketID=126655&PAGE=Document
http://wiki.rpath.com/Advisories:rPSA-2009-0046
http://www.vmware.com/security/advisories/VMSA-2009-0007.html
libpng-pointer-arrays-code-execution(48819)
oval:org.mitre.oval:def:10316
oval:org.mitre.oval:def:6458

CWE    1
CWE-824
OVAL    48
oval:org.secpod.oval:def:200607
oval:org.secpod.oval:def:300815
oval:org.secpod.oval:def:200299
oval:org.secpod.oval:def:200530
...

© SecPod Technologies