New Search

Portable Network Graphics Library Offset Calculation Vulnerability

oval:org.mitre.oval:def:3657

Portable Network Graphics (PNG) library libpng 1.2.5 and earlier does not correctly calculate offsets which allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a buffer overflow attack on the row buffers.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • Red Hat Enterprise Linux 3
Class:
vulnerability
Reference(s):
  • CVE-2002-1363
Product(s):
  • libpng