Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2011-3464
HistoryJul 22, 2012 - 5:55 p.m.

CVE-2011-3464

2012-07-2217:55:01
CWE-189
[email protected]
web.nvd.nist.gov
21
cve-2011-3464
off-by-one error
png_formatted_warning
libpng
remote attackers
denial of service
buffer overflow
stack-based
nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.9 High

AI Score

Confidence

High

0.075 Low

EPSS

Percentile

94.1%

JSON

Off-by-one error in the png_formatted_warning function in pngerror.c in libpng 1.5.4 through 1.5.7 might allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via unspecified vectors, which trigger a stack-based buffer overflow.

Affected configurations

NVD
Node
libpnglibpngMatch1.5.0beta
OR
libpnglibpngMatch1.5.1
OR
libpnglibpngMatch1.5.1beta
OR
libpnglibpngMatch1.5.2
OR
libpnglibpngMatch1.5.2beta
OR
libpnglibpngMatch1.5.3beta
OR
libpnglibpngMatch1.5.4
OR
libpnglibpngMatch1.5.4beta
OR
libpnglibpngMatch1.5.5
OR
libpnglibpngMatch1.5.5beta
OR
libpnglibpngMatch1.5.6
OR
libpnglibpngMatch1.5.6beta
OR
libpnglibpngMatch1.5.7
OR
libpnglibpngMatch1.5.7beta

Related

nvd 1
nessus 3
openvas 4
prion 1
cvelist 1
fedora 2
ubuntucve 1
gentoo 1
nvd
nvd
CVE-2011-3464
2012-07-22 17:55:01
nessus
nessus
Fedora 17 : mingw-libpng-1.5.13-1.fc17 (2012-15613)
2012-10-22 00:00:00
Fedora 18 : mingw-libpng-1.5.13-1.fc18 (2012-15592)
2012-10-11 00:00:00
GLSA-201206-15 : libpng: Multiple vulnerabilities
2012-06-25 00:00:00
openvas
openvas
Fedora Update for mingw-libpng FEDORA-2012-15613
2012-10-23 00:00:00
Fedora Update for mingw-libpng FEDORA-2012-15613
2012-10-23 00:00:00
Gentoo Security Advisory GLSA 201206-15 (libpng)
2012-08-10 00:00:00
prion
prion
Stack overflow
2012-07-22 17:55:00
cvelist
cvelist
CVE-2011-3464
2012-07-22 17:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: mingw-libpng-1.5.13-1.fc18
2012-10-11 03:12:57
[SECURITY] Fedora 17 Update: mingw-libpng-1.5.13-1.fc17
2012-10-22 02:03:25
ubuntucve
ubuntucve
CVE-2011-3464
2012-07-22 00:00:00
gentoo
gentoo
libpng: Multiple vulnerabilities
2012-06-22 00:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.9 High

AI Score

Confidence

High

0.075 Low

EPSS

Percentile

94.1%

JSON
Related for CVE-2011-3464
nvd1nessus3openvas4prion1cvelist1fedora2ubuntucve1gentoo1