Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
greg roelofs libpng vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2004-0597
Multiple buffer overflows in libpng 1.2.5 and previous versions, as used in multiple products, allow remote malicious users to execute arbitrary code via malformed PNG images in which (1) the png_handle_tRNS function does not properly validate the length of transparency chunk (tR...
Microsoft Windows Messenger 5.0
Greg Roelofs Libpng
Microsoft Msn Messenger 6.1
Microsoft Msn Messenger 6.2
Microsoft Windows Media Player 9
Microsoft Windows 98se
Microsoft Windows Me
3 EDB exploits
2 Github repositories
7.5
CVSSv2
CVE-2006-3334
Buffer overflow in the png_decompress_chunk function in pngrutil.c in libpng prior to 1.2.12 allows context-dependent malicious users to cause a denial of service and possibly execute arbitrary code via unspecified vectors related to "chunk error processing," possibly i...
Greg Roelofs Libpng 1.2.3
Greg Roelofs Libpng 1.2.4
Greg Roelofs Libpng 1.2.5
Greg Roelofs Libpng 1.2.10
Greg Roelofs Libpng 1.2.2
Greg Roelofs Libpng 1.2.9
Greg Roelofs Libpng
Greg Roelofs Libpng 1.2.0
Greg Roelofs Libpng 1.2.1
Greg Roelofs Libpng 1.2.7rc1
Greg Roelofs Libpng 1.2.8
Greg Roelofs Libpng 1.2.6
Greg Roelofs Libpng 1.2.7
7.5
CVSSv2
CVE-2004-0768
libpng 1.2.5 and previous versions does not properly calculate certain buffer offsets, which could allow remote malicious users to execute arbitrary code via a buffer overflow attack.
Greg Roelofs Libpng3 1.2.3
Greg Roelofs Libpng3 1.2.4
Greg Roelofs Libpng3 1.2.5
Greg Roelofs Libpng3 1.2.0
Greg Roelofs Libpng3 1.2.1
Greg Roelofs Libpng3 1.2.2
7.5
CVSSv2
CVE-2002-1363
Portable Network Graphics (PNG) library libpng 1.2.5 and previous versions does not correctly calculate offsets, which allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a buffer overflow attack on the row buffers.
Greg Roelofs Libpng 1.0.13
Greg Roelofs Libpng 1.0.14
Greg Roelofs Libpng 1.2.1
Greg Roelofs Libpng 1.2.2
Greg Roelofs Libpng 1.2.3
Greg Roelofs Libpng 1.0.7
Greg Roelofs Libpng 1.0.8
Greg Roelofs Libpng 1.0.5
Greg Roelofs Libpng 1.0.6
Greg Roelofs Libpng 1.2.4
Greg Roelofs Libpng 1.0.11
Greg Roelofs Libpng 1.0.12
Greg Roelofs Libpng 1.0.9
Greg Roelofs Libpng 1.2.0
7.5
CVSSv2
CVE-2002-0660
Buffer overflow in libpng 1.0.12-3.woody.2 and libpng3 1.2.1-1.1.woody.2 on Debian GNU/Linux 3.0, and other operating systems, may allow malicious users to cause a denial of service and possibly execute arbitrary code, a different vulnerability than CVE-2002-0728.
Greg Roelofs Libpng3 1.2.1
Greg Roelofs Libpng 1.0.12
5
CVSSv2
CVE-2006-0481
Heap-based buffer overflow in the alpha strip capability in libpng 1.2.7 allows context-dependent malicious users to cause a denial of service (crash) when the png_do_strip_filler function is used to strip alpha channels out of the image.
Greg Roelofs Libpng 1.2.7
5
CVSSv2
CVE-2004-0598
The png_handle_iCCP function in libpng 1.2.5 and previous versions allows remote malicious users to cause a denial of service (application crash) via a certain PNG image that triggers a null dereference.
Greg Roelofs Libpng
5
CVSSv2
CVE-2004-0599
Multiple integer overflows in the (1) png_read_png in pngread.c or (2) png_handle_sPLT functions in pngrutil.c or (3) progressive display image reading capability in libpng 1.2.5 and previous versions allow remote malicious users to cause a denial of service (application crash) v...
Greg Roelofs Libpng
5
CVSSv2
CVE-2002-0728
Buffer overflow in the progressive reader for libpng 1.2.x prior to 1.2.4, and 1.0.x prior to 1.0.14, allows malicious users to cause a denial of service (crash) via a PNG data stream that has more IDAT data than indicated by the IHDR chunk.
Greg Roelofs Libpng 1.2.4
Greg Roelofs Libpng 1.0.14
2.6
CVSSv2
CVE-2011-3328
The png_handle_cHRM function in pngrutil.c in libpng 1.5.4, when color-correction support is enabled, allows remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a malformed PNG image containing a cHRM chunk associated with a certai...
Greg Roelofs Libpng 1.5.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »