CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

Tenable Nessus•added 2024/06/03 12:0 a.m.•34 views

RHEL 7 : optipng (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - optipng: heap buffer overflow in the bmpreadrows function CVE-2016-3981 - optipng: heap buffer overflow i...

8.8CVSS7.3AI score0.02509EPSS

Exploits3References6

Tenable Nessus•added 2017/02/17 12:0 a.m.•45 views

FreeBSD : optipng -- multiple vulnerabilities (8fedf75c-ef2f-11e6-900e-003048f78448)

ifread.c in gif2png, as used in OptiPNG before 0.7.6, allows remote attackers to cause a denial of service uninitialized memory read via a crafted GIF file. The bmpreadrows function in pngxtern/pngxrbmp.c in OptiPNG before 0.7.6 allows remote attackers to cause a denial of service invalid memory...

9.3CVSS7.4AI score0.02509EPSS

Exploits2References5

BDU FSTEC•added 2016/05/05 12:0 a.m.•2 views

The vulnerability of the optimization software for PNG OptiPNG allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the bmprle4fread function in the PNG optimization software Pngxrbmp.c is due to buffer overflow in the dynamic memory. Exploiting this vulnerability can allow a remote attacker to cause service interruptions memory out-of-bound reading, unexpected system termination, or execu...

6.8CVSS0.02509EPSS

Exploits0References7Affected Software2

NVD•added 2016/04/13 4:59 p.m.•11 views

CVE-2016-3982

Off-by-one error in the bmprle4fread function in pngxrbmp.c in OptiPNG before 0.7.6 allows remote attackers to cause a denial of service out-of-bounds read or write access and crash or possibly execute arbitrary code via a crafted image file, which triggers a heap-based buffer overflow...

8.8CVSS9AI score0.02509EPSS

Exploits0References7