返回 CVE 瀏覽器

CVE-2004-0597

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1220%

EPSS Percentile15.57th

Published2004年11月23日

Last Modified2026年4月16日

Vulnerability Description

Multiple buffer overflows in libpng 1.2.5 and earlier, as used in multiple products, allow remote attackers to execute arbitrary code via malformed PNG images in which (1) the png_handle_tRNS function does not properly validate the length of transparency chunk (tRNS) data, or the (2) png_handle_sBIT or (3) png_handle_hIST functions do not perform sufficient bounds checking.

Affected Platforms (CPE)

📦

Greg Roelofs

Libpng

<= 1.2.5

📦

Microsoft

Msn Messenger

= 6.1

📦

Microsoft

Msn Messenger

= 6.2

📦

Microsoft

Windows Media Player

= 9

📦

Microsoft

Windows Messenger

= 5.0

💻

Microsoft

Windows 98se

All versions

💻

Microsoft

Windows Me

All versions

References & Advisories

🔗 ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt

🔗 http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000856

🔗 http://lists.apple.com/mhonarc/security-announce/msg00056.html

🔗 http://marc.info/?l=bugtraq&m=109163866717909&w=2

🔗 http://marc.info/?l=bugtraq&m=109181639602978&w=2

🔗 http://marc.info/?l=bugtraq&m=109761239318458&w=2

🔗 http://marc.info/?l=bugtraq&m=109900315219363&w=2

🔗 http://marc.info/?l=bugtraq&m=110796779903455&w=2

相關漏洞威脅

CVE-2016-104249.8

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile, Snapdragon Mobile, and Snapdragon ...

CVE-2010-12059.8

Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in progressive applications, might allow rem...

CVE-2017-126529.8

libpng before 1.6.32 does not properly check the length of chunks against the user limit.

CVE-2018-145508.8

An issue has been found in third-party PNM decoding associated with libpng 1.6.35. It is a stack-based buffer overflow in the func...