Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2010-1513
HistoryMay 26, 2010 - 7:30 p.m.

CVE-2010-1513

2010-05-2619:30:01
CWE-189
[email protected]
web.nvd.nist.gov

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

High

0.031 Low

EPSS

Percentile

91.2%

JSON

Multiple integer overflows in src/image.c in Ziproxy before 3.0.1 allow remote attackers to execute arbitrary code via (1) a large JPG image, related to the jpg2bitmap function or (2) a large PNG image, related to the png2bitmap function, leading to heap-based buffer overflows.

Affected configurations

NVD
Node
daniel_mealha_cabritaziproxyRange3.0.0
OR
daniel_mealha_cabritaziproxyMatch1.1
OR
daniel_mealha_cabritaziproxyMatch1.2
OR
daniel_mealha_cabritaziproxyMatch1.2b
OR
daniel_mealha_cabritaziproxyMatch1.3
OR
daniel_mealha_cabritaziproxyMatch1.3b
OR
daniel_mealha_cabritaziproxyMatch1.3beta
OR
daniel_mealha_cabritaziproxyMatch1.3c
OR
daniel_mealha_cabritaziproxyMatch1.3d
OR
daniel_mealha_cabritaziproxyMatch1.4.0
OR
daniel_mealha_cabritaziproxyMatch1.5.0
OR
daniel_mealha_cabritaziproxyMatch1.5.1
OR
daniel_mealha_cabritaziproxyMatch1.5.2
OR
daniel_mealha_cabritaziproxyMatch1.9.0
OR
daniel_mealha_cabritaziproxyMatch2.0.0
OR
daniel_mealha_cabritaziproxyMatch2.1.0
OR
daniel_mealha_cabritaziproxyMatch2.1.1
OR
daniel_mealha_cabritaziproxyMatch2.2.0
OR
daniel_mealha_cabritaziproxyMatch2.2.1
OR
daniel_mealha_cabritaziproxyMatch2.2.2
OR
daniel_mealha_cabritaziproxyMatch2.3.0
OR
daniel_mealha_cabritaziproxyMatch2.3.5beta
OR
daniel_mealha_cabritaziproxyMatch2.4.0
OR
daniel_mealha_cabritaziproxyMatch2.4.1
OR
daniel_mealha_cabritaziproxyMatch2.4.2
OR
daniel_mealha_cabritaziproxyMatch2.4.3
OR
daniel_mealha_cabritaziproxyMatch2.4.8beta
OR
daniel_mealha_cabritaziproxyMatch2.4.8beta2
OR
daniel_mealha_cabritaziproxyMatch2.5.0
OR
daniel_mealha_cabritaziproxyMatch2.5.1
OR
daniel_mealha_cabritaziproxyMatch2.5.2
OR
daniel_mealha_cabritaziproxyMatch2.5.9beta
OR
daniel_mealha_cabritaziproxyMatch2.6.0
OR
daniel_mealha_cabritaziproxyMatch2.6.9beta
OR
daniel_mealha_cabritaziproxyMatch2.6.9beta2
OR
daniel_mealha_cabritaziproxyMatch2.7.0
OR
daniel_mealha_cabritaziproxyMatch2.7.1
OR
daniel_mealha_cabritaziproxyMatch2.7.2
OR
daniel_mealha_cabritaziproxyMatch2.7.9beta
OR
daniel_mealha_cabritaziproxyMatch2.7.9beta2
OR
daniel_mealha_cabritaziproxyMatch2.7.9beta3
OR
daniel_mealha_cabritaziproxyMatch3.0.1

Related

openvas 4
securityvulns 2
cve 1
prion 1
freebsd 1
ubuntucve 1
cvelist 1
debiancve 1
nessus 1
openvas
openvas
Ziproxy Image Parsing Multiple Integer Overflow Vulnerabilities
2010-05-25 00:00:00
FreeBSD Ports: ziproxy
2010-06-03 00:00:00
FreeBSD Ports: ziproxy
2010-06-03 00:00:00
securityvulns
securityvulns
Ziproxy integer overflow
2010-05-26 00:00:00
Secunia Research: Ziproxy Two Integer Overflow Vulnerabilities
2010-05-26 00:00:00
cve
cve
CVE-2010-1513
2010-05-26 19:30:01
prion
prion
Integer overflow
2010-05-26 19:30:00
freebsd
freebsd
ziproxy -- atypical huge picture files vulnerability
2010-05-20 00:00:00
ubuntucve
ubuntucve
CVE-2010-1513
2010-05-26 00:00:00
cvelist
cvelist
CVE-2010-1513
2010-05-26 19:00:00
debiancve
debiancve
CVE-2010-1513
2010-05-26 19:30:01
nessus
nessus
FreeBSD : ziproxy -- atypical huge picture files vulnerability (b43004b8-6a53-11df-bc7b-0245fb008c0b)
2010-06-03 00:00:00

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

High

0.031 Low

EPSS

Percentile

91.2%

JSON
Related for NVD:CVE-2010-1513
openvas4securityvulns2cve1prion1freebsd1ubuntucve1cvelist1debiancve1nessus1