| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 9.5 | $0-$5k | 0.00 |
Summary
A vulnerability, which was classified as problematic, has been found in libpng. Affected by this vulnerability is an unknown functionality of the component Image File Compression Handler. This manipulation causes numeric error. This vulnerability appears as CVE-2011-3045. There is no available exploit. It is suggested to install a patch to address this issue.
Details
A vulnerability has been found in libpng (Image Processing Software) (affected version unknown) and classified as critical. Affected by this vulnerability is an unknown functionality of the component Image File Compression Handler. The manipulation with an unknown input leads to a numeric error vulnerability. The CWE definition for the vulnerability is CWE-189. As an impact it is known to affect confidentiality, integrity, and availability. The summary by CVE is:
Integer signedness error in the png_inflate function in pngrutil.c in libpng before 1.4.10beta01, as used in Google Chrome before 17.0.963.83 and other products, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted PNG file, a different vulnerability than CVE-2011-3026.
The weakness was presented 03/20/2012 by Sergey Glazunov as confirmed knowledge base article (Website). The advisory is shared at rhn.redhat.com. This vulnerability is known as CVE-2011-3045 since 08/09/2011. The exploitation appears to be difficult. The attack can be launched remotely. The exploitation doesn't need any form of authentication. Neither technical details nor an exploit are publicly available.
The vulnerability scanner Nessus provides a plugin with the ID 74587 (openSUSE Security Update : chromium / v8 (openSUSE-SU-2012:0466-1)), which helps to determine the existence of the flaw in a target environment. It is assigned to the family SuSE Local Security Checks and running in the context l. The commercial vulnerability scanner Qualys is able to test this issue with plugin 350691 (Amazon Linux Security Advisory for libpng: ALAS-2012-056).
Applying the patch RHSA-2012:0407 is able to eliminate this problem. The bugfix is ready for download at rhn.redhat.com. A possible mitigation has been published immediately after the disclosure of the vulnerability. Furthermore it is possible to detect and prevent this kind of attack with TippingPoint and the filter 12898.
The vulnerability is also documented in the databases at X-Force (74000), Tenable (74587), SecurityFocus (BID 53407†), OSVDB (80232†) and Secunia (SA48485†). Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
Product
Type
Name
License
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 10.0VulDB Meta Temp Score: 9.5
VulDB Base Score: 10.0
VulDB Temp Score: 9.5
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Numeric errorCWE: CWE-189
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 74587
Nessus Name: openSUSE Security Update : chromium / v8 (openSUSE-SU-2012:0466-1)
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
Nessus Context: 🔍
Nessus Port: 🔍
OpenVAS ID: 892439
OpenVAS Name: Debian Security Advisory DSA 2439-1 (libpng - buffer overflow
OpenVAS File: 🔍
OpenVAS Family: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: PatchStatus: 🔍
Reaction Time: 🔍
0-Day Time: 🔍
Exposure Time: 🔍
Patch: RHSA-2012:0407
TippingPoint: 🔍
McAfee IPS: 🔍
McAfee IPS Version: 🔍
ISS Proventia IPS: 🔍
PaloAlto IPS: 🔍
Fortigate IPS: 🔍
Timeline
08/09/2011 🔍03/13/2012 🔍
03/20/2012 🔍
03/20/2012 🔍
03/20/2012 🔍
03/21/2012 🔍
03/22/2012 🔍
03/22/2012 🔍
03/22/2012 🔍
03/26/2012 🔍
06/13/2014 🔍
06/09/2025 🔍
Sources
Advisory: rhn.redhat.comResearcher: Sergey Glazunov
Status: Confirmed
Confirmation: 🔍
CVE: CVE-2011-3045 (🔍)
GCVE (CVE): GCVE-0-2011-3045
GCVE (VulDB): GCVE-100-4873
OVAL: 🔍
X-Force: 74000
SecurityFocus: 53407 - WebKit CVE-2011-3056 Cross Origin Information Disclosure Vulnerability
Secunia: 48485 - Red Hat update for libpng, Moderately Critical
OSVDB: 80232
SecurityTracker: 1026823 - libpng Memory Error in png_inflate() Lets Remote Users Execute Arbitrary Code
Vulnerability Center: 34708 - libpng \x3C 1.4.10beta01 Integer Signedness Error Allows Remote Code Execution and DoS via a PNG File, Medium
Entry
Created: 03/22/2012 12:14Updated: 06/09/2025 19:00
Changes: 03/22/2012 12:14 (76), 04/10/2017 12:06 (15), 03/22/2021 09:02 (2), 01/11/2025 15:33 (17), 06/09/2025 19:00 (1)
Complete: 🔍
Cache ID: 216::103
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
No comments yet. Languages: en.
Please log in to comment.