Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:24740
HistoryApr 10, 2020 - 1:03 a.m.

Arbitrary Code Execution

2020-04-1001:03:15
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13

EPSS

0.013

Percentile

85.7%

libpng is vulnerable to arbitrary code execution. The vulnerability exists as a buffer overflow flaw was found in the way libpng processed certain PNG image files. An attacker could create a specially-crafted PNG image that, when opened, could cause an application using libpng to crash or, potentially, execute arbitrary code with the privileges of the user running the application.

References