Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0597

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-0597
Last Modified 21 Jul 2013 01:16:28
Published 23 Nov 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0597

Summary

Multiple buffer overflows in libpng 1.2.5 and earlier, as used in multiple products, allow remote attackers to execute arbitrary code via malformed PNG images in which (1) the png_handle_tRNS function does not properly validate the length of transparency chunk (tRNS) data, or the (2) png_handle_sBIT or (3) png_handle_hIST functions do not perform sufficient bounds checking.

Vulnerable Systems

Operating System

  • Microsoft Windows 98se

  • Microsoft Windows Me

Application

  • Greg Roelofs Libpng 1.2.5

  • Microsoft Msn Messenger 6.1

  • Microsoft Msn Messenger 6.2

  • Microsoft Windows Media Player 9

  • Microsoft Windows Messenger 5.0


References

CERT - TA05-039A

CERT - TA04-217A

CERT-VN - VU#817368

CERT-VN - VU#388984

FEDORA - FLSA:1943

XF - libpng-pnghandle-bo(16894)

TRUSTIX - 2004-0040

BID - 10857

SUSE - SUSE-SA:2004:023

MS - MS05-009

GENTOO - GLSA-200408-22

GENTOO - GLSA-200408-03

DEBIAN - DSA-536

CONFIRM - http://www.adobe.com/support/downloads/detail.jsp?ftpID=2679

BID - 15495

REDHAT - RHSA-2004:429

REDHAT - RHSA-2004:421

REDHAT - RHSA-2004:402

CONFIRM - http://www.mozilla.org/projects/security/known-vulnerabilities.html

MISC - http://www.coresecurity.com/common/showdoc.php?idx=421&idxseccion=10

MISC - http://scary.beasts.org/security/CESA-2004-001.txt

BUGTRAQ - 20050209 MSN Messenger PNG Image Buffer Overflow Download Shellcoded Exploit

FEDORA - FLSA:2089

SCO - SCOSA-2004.16

HP - SSRT4778

BUGTRAQ - 20040804 [OpenPKG-SA-2004.035] OpenPKG Security Advisory (png)

CONECTIVA - CLA-2004:856

SCO - SCOSA-2005.49

MANDRIVA - MDKSA-2006:213

MANDRIVA - MDKSA-2006:212

MANDRAKE - MDKSA-2004:079

CONFIRM - http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-114816-02-1

SUNALERT - 200663

SECUNIA - 22958

SECUNIA - 22957


Last Updated: 27 May 2016 10:38:40