Lucene search

[email protected]NVD:CVE-2010-4694

HistoryJan 14, 2011 - 6:00 p.m.

CVE-2010-4694

2011-01-1418:00:01

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.9

Confidence

High

EPSS

0.021

Percentile

89.2%

JSON

Buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers to cause a denial of service (application crash) or have unspecified other impact via a GIF file that contains many images, leading to long extensions such as .p100 for PNG output files, as demonstrated by a CGI program that launches gif2png, a different vulnerability than CVE-2009-5018.

Affected configurations

Nvd

Node

catbgif2pngRange≤2.5.3

catbgif2pngMatch0.99

catbgif2pngMatch1.0.0

catbgif2pngMatch1.1.0

catbgif2pngMatch1.1.1

catbgif2pngMatch1.2.0

catbgif2pngMatch1.2.1

catbgif2pngMatch1.2.2

catbgif2pngMatch2.0.0

catbgif2pngMatch2.0.1

catbgif2pngMatch2.0.2

catbgif2pngMatch2.0.3

catbgif2pngMatch2.1.1

catbgif2pngMatch2.1.2

catbgif2pngMatch2.1.3

catbgif2pngMatch2.2.0

catbgif2pngMatch2.2.1

catbgif2pngMatch2.2.2

catbgif2pngMatch2.2.3

catbgif2pngMatch2.2.4

catbgif2pngMatch2.2.5

catbgif2pngMatch2.3.0

catbgif2pngMatch2.3.1

catbgif2pngMatch2.3.2

catbgif2pngMatch2.3.3

catbgif2pngMatch2.4.0

catbgif2pngMatch2.4.1

catbgif2pngMatch2.4.2

catbgif2pngMatch2.4.3

catbgif2pngMatch2.4.4

catbgif2pngMatch2.4.5

catbgif2pngMatch2.4.6

catbgif2pngMatch2.4.7

catbgif2pngMatch2.5.0

catbgif2pngMatch2.5.1

catbgif2pngMatch2.5.2

VendorProductVersionCPE
catbgif2png*cpe:2.3:a:catb:gif2png:*:*:*:*:*:*:*:*
catbgif2png0.99cpe:2.3:a:catb:gif2png:0.99:*:*:*:*:*:*:*
catbgif2png1.0.0cpe:2.3:a:catb:gif2png:1.0.0:*:*:*:*:*:*:*
catbgif2png1.1.0cpe:2.3:a:catb:gif2png:1.1.0:*:*:*:*:*:*:*
catbgif2png1.1.1cpe:2.3:a:catb:gif2png:1.1.1:*:*:*:*:*:*:*
catbgif2png1.2.0cpe:2.3:a:catb:gif2png:1.2.0:*:*:*:*:*:*:*
catbgif2png1.2.1cpe:2.3:a:catb:gif2png:1.2.1:*:*:*:*:*:*:*
catbgif2png1.2.2cpe:2.3:a:catb:gif2png:1.2.2:*:*:*:*:*:*:*
catbgif2png2.0.0cpe:2.3:a:catb:gif2png:2.0.0:*:*:*:*:*:*:*
catbgif2png2.0.1cpe:2.3:a:catb:gif2png:2.0.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
catb	gif2png	*	cpe:2.3:a:catb:gif2png::::::::
catb	gif2png	0.99	cpe:2.3:a:catb:gif2png:0.99:::::::*
catb	gif2png	1.0.0	cpe:2.3:a:catb:gif2png:1.0.0:::::::*
catb	gif2png	1.1.0	cpe:2.3:a:catb:gif2png:1.1.0:::::::*
catb	gif2png	1.1.1	cpe:2.3:a:catb:gif2png:1.1.1:::::::*
catb	gif2png	1.2.0	cpe:2.3:a:catb:gif2png:1.2.0:::::::*
catb	gif2png	1.2.1	cpe:2.3:a:catb:gif2png:1.2.1:::::::*
catb	gif2png	1.2.2	cpe:2.3:a:catb:gif2png:1.2.2:::::::*
catb	gif2png	2.0.0	cpe:2.3:a:catb:gif2png:2.0.0:::::::*
catb	gif2png	2.0.1	cpe:2.3:a:catb:gif2png:2.0.1:::::::*