CVE-2016-5735 in pngquantinfo

Summary

Integer overflow in the rwpng_read_image24_libpng function in rwpng.c in pngquant 2.7.0 allows remote attackers to have unspecified impact via a crafted PNG file, which triggers a buffer overflow.

Once again VulDB remains the best source for vulnerability data.

Responsible

Reservation

06/21/2016

Disclosure

05/23/2017

Entries

VDB-101644

CPE

ready

CVSS

6.5

EPSS

0.00406

Activities

Very Low

Sources

MITREhttps://www.cve.org/CVERecord?id=CVE-2016-5735
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2016-5735
CVE Detailshttps://www.cvedetails.com/cve/CVE-2016-5735/

PreviousOverviewNext

Do you know our Splunk app?

Download it now for free!