Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
greg roelofs libpng vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2011-3328
The png_handle_cHRM function in pngrutil.c in libpng 1.5.4, when color-correction support is enabled, allows remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a malformed PNG image containing a cHRM chunk associated with a certai...
Greg Roelofs Libpng 1.5.4
NA
CVE-2006-5793
The sPLT chunk handling code (png_set_sPLT function in pngset.c) in libpng 1.0.6 up to and including 1.2.12 uses a sizeof operator on the wrong data type, which allows context-dependent malicious users to cause a denial of service (crash) via malformed sPLT chunks that trigger an...
Greg Roelofs Libpng 1.0.9
Greg Roelofs Libpng 1.2.0
Greg Roelofs Libpng 1.2.5
Greg Roelofs Libpng 1.2.6
Greg Roelofs Libpng 1.0.7
Greg Roelofs Libpng 1.0.8
Greg Roelofs Libpng 1.2.3
Greg Roelofs Libpng 1.2.4
Greg Roelofs Libpng 1.0.6
Greg Roelofs Libpng 1.2.12
Greg Roelofs Libpng 1.2.2
Greg Roelofs Libpng 1.2.8
Greg Roelofs Libpng 1.2.9
Greg Roelofs Libpng 1.2.1
Greg Roelofs Libpng 1.2.10
Greg Roelofs Libpng 1.2.11
Greg Roelofs Libpng 1.2.7
Greg Roelofs Libpng 1.2.7rc1
NA
CVE-2006-3334
Buffer overflow in the png_decompress_chunk function in pngrutil.c in libpng prior to 1.2.12 allows context-dependent malicious users to cause a denial of service and possibly execute arbitrary code via unspecified vectors related to "chunk error processing," possibly i...
Greg Roelofs Libpng 1.2.3
Greg Roelofs Libpng 1.2.4
Greg Roelofs Libpng 1.2.5
Greg Roelofs Libpng 1.2.10
Greg Roelofs Libpng 1.2.2
Greg Roelofs Libpng 1.2.9
Greg Roelofs Libpng
Greg Roelofs Libpng 1.2.0
Greg Roelofs Libpng 1.2.1
Greg Roelofs Libpng 1.2.7rc1
Greg Roelofs Libpng 1.2.8
Greg Roelofs Libpng 1.2.6
Greg Roelofs Libpng 1.2.7
NA
CVE-2006-0481
Heap-based buffer overflow in the alpha strip capability in libpng 1.2.7 allows context-dependent malicious users to cause a denial of service (crash) when the png_do_strip_filler function is used to strip alpha channels out of the image.
Greg Roelofs Libpng 1.2.7
NA
CVE-2004-0597
Multiple buffer overflows in libpng 1.2.5 and previous versions, as used in multiple products, allow remote malicious users to execute arbitrary code via malformed PNG images in which (1) the png_handle_tRNS function does not properly validate the length of transparency chunk (tR...
Microsoft Windows Messenger 5.0
Greg Roelofs Libpng
Microsoft Msn Messenger 6.1
Microsoft Msn Messenger 6.2
Microsoft Windows Media Player 9
Microsoft Windows 98se
Microsoft Windows Me
3 EDB exploits
2 Github repositories
NA
CVE-2004-0598
The png_handle_iCCP function in libpng 1.2.5 and previous versions allows remote malicious users to cause a denial of service (application crash) via a certain PNG image that triggers a null dereference.
Greg Roelofs Libpng
NA
CVE-2004-0599
Multiple integer overflows in the (1) png_read_png in pngread.c or (2) png_handle_sPLT functions in pngrutil.c or (3) progressive display image reading capability in libpng 1.2.5 and previous versions allow remote malicious users to cause a denial of service (application crash) v...
Greg Roelofs Libpng
NA
CVE-2004-0768
libpng 1.2.5 and previous versions does not properly calculate certain buffer offsets, which could allow remote malicious users to execute arbitrary code via a buffer overflow attack.
Greg Roelofs Libpng3 1.2.3
Greg Roelofs Libpng3 1.2.4
Greg Roelofs Libpng3 1.2.5
Greg Roelofs Libpng3 1.2.0
Greg Roelofs Libpng3 1.2.1
Greg Roelofs Libpng3 1.2.2
NA
CVE-2002-1363
Portable Network Graphics (PNG) library libpng 1.2.5 and previous versions does not correctly calculate offsets, which allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a buffer overflow attack on the row buffers.
Greg Roelofs Libpng 1.0.13
Greg Roelofs Libpng 1.0.14
Greg Roelofs Libpng 1.2.1
Greg Roelofs Libpng 1.2.2
Greg Roelofs Libpng 1.2.3
Greg Roelofs Libpng 1.0.7
Greg Roelofs Libpng 1.0.8
Greg Roelofs Libpng 1.0.5
Greg Roelofs Libpng 1.0.6
Greg Roelofs Libpng 1.2.4
Greg Roelofs Libpng 1.0.11
Greg Roelofs Libpng 1.0.12
Greg Roelofs Libpng 1.0.9
Greg Roelofs Libpng 1.2.0
NA
CVE-2002-0728
Buffer overflow in the progressive reader for libpng 1.2.x prior to 1.2.4, and 1.0.x prior to 1.0.14, allows malicious users to cause a denial of service (crash) via a PNG data stream that has more IDAT data than indicated by the IHDR chunk.
Greg Roelofs Libpng 1.2.4
Greg Roelofs Libpng 1.0.14
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »