Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in progressive applications, might allow remote attackers to execute arbitrary code via a PNG image that triggers an additional data row.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P
Vendors Products
Apple
  • Iphone Os
  • Mac Os X Server
  • Safari
  • Itunes
  • Mac Os X
Mozilla
  • Seamonkey
  • Thunderbird
  • Firefox
Google
  • Chrome
Vmware
  • Workstation
  • Player
Suse
  • Linux Enterprise Server
Canonical
  • Ubuntu Linux
Fedoraproject
  • Fedora
Debian
  • Debian Linux
Libpng
  • Libpng
Opensuse
  • Opensuse

Configuration 1 [-]

OR cpe:2.3:a:libpng:libpng:*:*:*:*:*:*:*:*
cpe:2.3:a:libpng:libpng:*:*:*:*:*:*:*:*

Configuration 2 [-]

cpe:2.3:a:google:chrome:*:*:*:*:*:*:*:*

Configuration 3 [-]

OR cpe:2.3:a:apple:itunes:*:*:*:*:*:*:*:*
cpe:2.3:a:apple:safari:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:mac_os_x_server:*:*:*:*:*:*:*:*

Configuration 4 [-]

OR cpe:2.3:o:fedoraproject:fedora:12:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:13:*:*:*:*:*:*:*

Configuration 5 [-]

OR cpe:2.3:o:opensuse:opensuse:11.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:opensuse:11.2:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:9:*:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:10:sp3:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:11:-:*:*:*:*:*:*
cpe:2.3:o:suse:linux_enterprise_server:11:sp1:*:*:*:*:*:*

Configuration 6 [-]

OR cpe:2.3:a:vmware:player:*:*:*:*:*:*:*:*
cpe:2.3:a:vmware:player:*:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:*:*:*:*:*:*:*:*
cpe:2.3:a:vmware:workstation:*:*:*:*:*:*:*:*

Configuration 7 [-]

OR cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:9.04:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:9.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*

Configuration 8 [-]

cpe:2.3:o:debian:debian_linux:5.0:*:*:*:*:*:*:*

Configuration 9 [-]

OR cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:firefox:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:seamonkey:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:thunderbird:*:*:*:*:*:*:*:*
References
Link Resource
http://blackberry.com/btsc/KB27244 Broken Link
http://code.google.com/p/chromium/issues/detail?id=45983 Exploit Issue Tracking Mailing List Third Party Advisory
http://googlechromereleases.blogspot.com/2010/07/stable-channel-update.html Release Notes Third Party Advisory
http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng%3Ba=commitdiff%3Bh=188eb6b42602bf7d7ae708a21897923b6a83fe7c#patch18
http://lists.apple.com/archives/security-announce/2010//Aug/msg00003.html Mailing List Third Party Advisory
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html Mailing List Third Party Advisory
http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.html Mailing List Third Party Advisory
http://lists.apple.com/archives/security-announce/2011//Mar/msg00004.html Mailing List Third Party Advisory
http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.html Mailing List Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044283.html Mailing List Third Party Advisory
http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044397.html Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.html Mailing List Third Party Advisory
http://lists.vmware.com/pipermail/security-announce/2010/000105.html Mailing List Patch Third Party Advisory
http://secunia.com/advisories/40302 Broken Link
http://secunia.com/advisories/40336 Broken Link
http://secunia.com/advisories/40472 Broken Link
http://secunia.com/advisories/40547 Broken Link
http://secunia.com/advisories/41574 Broken Link
http://secunia.com/advisories/42314 Broken Link
http://secunia.com/advisories/42317 Broken Link
http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.613061 Mailing List Patch Third Party Advisory
http://support.apple.com/kb/HT4312 Third Party Advisory
http://support.apple.com/kb/HT4435 Broken Link
http://support.apple.com/kb/HT4456 Third Party Advisory
http://support.apple.com/kb/HT4457 Third Party Advisory
http://support.apple.com/kb/HT4554 Third Party Advisory
http://support.apple.com/kb/HT4566 Broken Link
http://trac.webkit.org/changeset/61816 Patch Third Party Advisory
http://www.debian.org/security/2010/dsa-2072 Third Party Advisory
http://www.libpng.org/pub/png/libpng.html Product Vendor Advisory
http://www.mandriva.com/security/advisories?name=MDVSA-2010:133 Broken Link
http://www.mozilla.org/security/announce/2010/mfsa2010-41.html Third Party Advisory
http://www.securityfocus.com/bid/41174 Third Party Advisory VDB Entry
http://www.ubuntu.com/usn/USN-960-1 Third Party Advisory
http://www.vmware.com/security/advisories/VMSA-2010-0014.html Patch Third Party Advisory
http://www.vupen.com/english/advisories/2010/1612 Broken Link
http://www.vupen.com/english/advisories/2010/1637 Broken Link
http://www.vupen.com/english/advisories/2010/1755 Broken Link
http://www.vupen.com/english/advisories/2010/1837 Broken Link
http://www.vupen.com/english/advisories/2010/1846 Broken Link
http://www.vupen.com/english/advisories/2010/1877 Broken Link
http://www.vupen.com/english/advisories/2010/2491 Broken Link
http://www.vupen.com/english/advisories/2010/3045 Broken Link
http://www.vupen.com/english/advisories/2010/3046 Broken Link
https://bugs.webkit.org/show_bug.cgi?id=40798 Permissions Required Third Party Advisory
https://bugzilla.mozilla.org/show_bug.cgi?id=570451 Exploit Issue Tracking Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=608238 Issue Tracking Patch Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/59815 Third Party Advisory VDB Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11851 Third Party Advisory
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2010-06-30T18:00:00

Updated: 2017-09-18T12:57:01

Reserved: 2010-03-30T00:00:00

Link: CVE-2010-1205

JSON object: View

cve-icon NVD Information

Status : Modified

Published: 2010-06-30T18:30:01.333

Modified: 2023-11-07T02:05:17.120

Link: CVE-2010-1205

JSON object: View

cve-icon Redhat Information

No data.

CWE