CVE-2009-5018

Loading...

General

Score:6.8/10.0
Severity:Medium
Category:Buffer Error
Exploit:Available

Impact Metrics

Confidentiality:Partial
Integrity:Partial
Availability:Partial

Exploitability Metrics

Access Vector:Network
Access Complexity:Medium
Authentication:None

Published on 14/01/11 - Updated on 17/08/17

Description

Stack-based buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers to execute arbitrary code via a long command-line argument, as demonstrated by a CGI program that launches gif2png.

Category: Buffer Error

CWE-119 (Buffer Errors)
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

Security Notices

US National Vulnerability DatabaseCVE-2009-5018
Renater 2011/VULN0010

Exploits

Exploit-DBEDB-34356
SecurityFocusBID-41801

Relative technologies

VendorProduct
catbgif2png

Share this vulnerability with:

Twitter Facebook LinkedIn Mail