Alias(es)LibPNG.Graphics.Library.Image.Height.Integer.Overflow, LibPNG.Graphics.Library.Image.Width.Integer.Overflow, PNG.Image.Width.Integer.Overflow |
Release DateSep 11, 2006 |
Severitycritical |
ImpactSystem compromise: remote code execution. |
DescriptionThis indicates a possible attempt to exploit an integer overflow vulnerability in libpng.Libpng is the official reference library for reading and writing Portable Network Graphics (PNG) images. It has been reported that libpng contains an integer overflow vulnerability which can be triggered by a PNG image with an overly large height and/or width value. This may allow an attacker to execute arbitrary code on the affected system when a specially crafted image file is opened. |
Affected ProductsAll versions of libpng prior to 1.2.6 of the 1.2.x series and 1.0.16 of the older 1.0.x series are vulnerable. |
Recommended ActionsApply appropriate patches or upgrade the library to the latest non-vulnerable version. |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2004-0941CVE-2004-0990 CVE-2004-0599 CVE-2008-4064 CVE-2009-1097 |
Reference/shttp://scary.beasts.org/security/CESA-2004-001.txthttp://www.securityfocus.com/bid/11481 (BugTraq) http://www.securityfocus.com/bid/11523 (BugTraq) |
