cpe:/a:greg_roelofs:libpng:1.0.14 cpe:/a:greg_roelofs:libpng:1.2.4 CVE-2002-0728 2002-08-12T00:00:00.000-04:00 2008-09-05T16:28:47.880-04:00 5.0 NETWORK LOW NONE NONE NONE PARTIAL http://nvd.nist.gov 2004-01-01T00:00:00.000-05:00 CONECTIVA CLA-2002:512 DEBIAN DSA-140 MANDRAKE MDKSA-2002:049 REDHAT RHSA-2002:152 CONFIRM ftp://swrinde.nde.swri.edu/pub/png-group/archives/png-list.200207 Buffer overflow in the progressive reader for libpng 1.2.x before 1.2.4, and 1.0.x before 1.0.14, allows attackers to cause a denial of service (crash) via a PNG data stream that has more IDAT data than indicated by the IHDR chunk.