Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0749

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2009-0749
Last Modified 07 Jul 2009 01:31:32
Published 02 Mar 2009 03:30:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2009-0749

Summary

Use-after-free vulnerability in the GIFReadNextExtension function in lib/pngxtern/gif/gifread.c in OptiPNG 0.6.2 and earlier allows context-dependent attackers to cause a denial of service (application crash) via a crafted GIF image that causes the realloc function to return a new pointer, which triggers memory corruption when the old pointer is accessed.

Vulnerable Systems

Application

  • Cosmin Truta Optipng 0.0

  • Cosmin Truta Optipng 0.1

  • Cosmin Truta Optipng 0.2

  • Cosmin Truta Optipng 0.3

  • Cosmin Truta Optipng 0.3.1

  • Cosmin Truta Optipng 0.3.2

  • Cosmin Truta Optipng 0.4

  • Cosmin Truta Optipng 0.4.1

  • Cosmin Truta Optipng 0.4.2

  • Cosmin Truta Optipng 0.4.3

  • Cosmin Truta Optipng 0.4.4

  • Cosmin Truta Optipng 0.4.5

  • Cosmin Truta Optipng 0.4.6

  • Cosmin Truta Optipng 0.4.7

  • Cosmin Truta Optipng 0.4.8

  • Cosmin Truta Optipng 0.5

  • Cosmin Truta Optipng 0.5.1

  • Cosmin Truta Optipng 0.5.2

  • Cosmin Truta Optipng 0.5.3

  • Cosmin Truta Optipng 0.5.4

  • Cosmin Truta Optipng 0.5.5

  • Cosmin Truta Optipng 0.6

  • Cosmin Truta Optipng 0.6.1

  • Cosmin Truta Optipng 0.6.2


References

VUPEN - ADV-2009-0510

BID - 33873

CONFIRM - http://optipng.sourceforge.net

XF - optipng-gifreadnextextension-code-execution(48879)

MLIST - [oss-security] 20090225 Re: CVE request: optipng security release

MLIST - [oss-security] 20090224 CVE request: optipng security release

GENTOO - GLSA-200903-12

CONFIRM - http://sourceforge.net/tracker/index.php?func=detail&aid=2582013&group_id=151404&atid=780913

SECUNIA - 35685

SECUNIA - 34259

SECUNIA - 34201

SECUNIA - 34035

SUSE - SUSE-SR:2009:012

SUSE - SUSE-SR:2009:006


Last Updated: 27 May 2016 10:50:21