Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0768

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-0768
Last Modified 23 Jan 2009 12:24:34
Published 20 Oct 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0768

Summary

libpng 1.2.5 and earlier does not properly calculate certain buffer offsets, which could allow remote attackers to execute arbitrary code via a buffer overflow attack.

Vulnerable Systems

Application

  • Greg Roelofs Libpng3 1.2.0

  • Greg Roelofs Libpng3 1.2.1

  • Greg Roelofs Libpng3 1.2.2

  • Greg Roelofs Libpng3 1.2.3

  • Greg Roelofs Libpng3 1.2.4

  • Greg Roelofs Libpng3 1.2.5


References

XF - libpng-offset-bo(16914)

DEBIAN - DSA-536

FEDORA - FLSA:1943

GENTOO - GLSA-200812-15

SECUNIA - 33137


Last Updated: 27 May 2016 10:38:44