Main Vulnerability Database Exploits ID:3668 - Exploit for Buffer overflow in libpng - CVE-2010-1205

ID:3668 - Exploit for Buffer overflow in libpng - CVE-2010-1205

Published: July 29, 2020

Vulnerability identifier: #VU32860

Vulnerability risk: Medium

CVE-ID: CVE-2010-1205

CWE-ID: CWE-119

Exploitation vector: Remote access

Vulnerable software:
libpng

Link to public exploit:

https://www.exploit-db.com/exploits/14422/

Vulnerability description

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in progressive applications, might allow remote attackers to execute arbitrary code via a PNG image that triggers an additional data row.

Remediation

Install update from vendor's website.

ID:3668 - Exploit for Buffer overflow in libpng - CVE-2010-1205

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human