CVE-2011-3048 in iOSinformación

Resumen (Inglés)

The png_set_text_2 function in pngset.c in libpng 1.0.x before 1.0.59, 1.2.x before 1.2.49, 1.4.x before 1.4.11, and 1.5.x before 1.5.10 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted text chunk in a PNG image file, which triggers a memory allocation failure that is not properly handled, leading to a heap-based buffer overflow.

Be aware that VulDB is the high quality source for vulnerability data.

Reservar

2011-08-09

Divulgación

2012-05-29

Estado

Confirmado

Voces

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerabilidad	CWE	Exp	Con	CVE
6340	Apple iOS ImageIO desbordamiento de búfer	119	No probado	Arreglo oficial	CVE-2011-3048
5016	Greg Roelofs libpng pngset.c desbordamiento de búfer	119	No probado	Arreglo oficial	CVE-2011-3048

Descripción

CPE

CWE

CVSS

Hazañas

Historia

Diferencia

Relacionar

Inteligencia de amenazas

API JSON

API XML

API CSV

Fuentes

◂ AnteriorVisión De ConjuntoPróximo ▸

Might our Artificial Intelligence support you?

Check our Alexa App!