Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0973

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2015-0973
Last Modified 11 Feb 2015 02:15:12
Published 18 Jan 2015 01:59:03
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2015-0973

Summary

Buffer overflow in the png_read_IDAT_data function in pngrutil.c in libpng before 1.5.21 and 1.6.x before 1.6.16 allows context-dependent attackers to execute arbitrary code via IDAT data with a large width, a different vulnerability than CVE-2014-9495.

Vulnerable Systems

Application

  • Libpng 1.5.20

  • Libpng 1.6.0

  • Libpng 1.6.1

  • Libpng 1.6.10

  • Libpng 1.6.11

  • Libpng 1.6.12

  • Libpng 1.6.13

  • Libpng 1.6.14

  • Libpng 1.6.15

  • Libpng 1.6.2

  • Libpng 1.6.3

  • Libpng 1.6.4

  • Libpng 1.6.5

  • Libpng 1.6.6

  • Libpng 1.6.7

  • Libpng 1.6.8

  • Libpng 1.6.9


References

MLIST - [oss-security] 20150110 Re: CVE Request: libpng 1.6.15 Heap Overflow

MLIST - [oss-security] 20150109 Re: CVE Request: libpng 1.6.15 Heap Overflow

MISC - http://tfpwn.com/files/libpng_heap_overflow_1.6.15.txt

MLIST - [png-mng-announce] 20141222 libpng-1.5.21 and 1.6.16 are available

SECUNIA - 62725


Last Updated: 27 May 2016 11:07:34