Vulnerability Name: | CVE-2017-6192 (CCN-123629) | ||||||||||||||||||||||||||||||||||||
Assigned: | 2017-03-14 | ||||||||||||||||||||||||||||||||||||
Published: | 2017-03-14 | ||||||||||||||||||||||||||||||||||||
Updated: | 2020-04-29 | ||||||||||||||||||||||||||||||||||||
Summary: | Buffer overflow in APNGDis 2.8 and earlier allows a remote attackers to cause denial of service and possibly execute arbitrary code via a crafted image containing a malformed chunk size descriptor. | ||||||||||||||||||||||||||||||||||||
CVSS v3 Severity: | 5.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H) 4.9 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:U/RL:U/RC:R)
4.7 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L/E:U/RL:U/RC:R)
| ||||||||||||||||||||||||||||||||||||
CVSS v2 Severity: | 4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P)
| ||||||||||||||||||||||||||||||||||||
Vulnerability Type: | CWE-119 | ||||||||||||||||||||||||||||||||||||
Vulnerability Consequences: | Gain Access | ||||||||||||||||||||||||||||||||||||
References: | Source: CCN Type: SourceForge APNGDis Project APNGDis Source: MITRE Type: CNA CVE-2017-6192 Source: BID Type: Third Party Advisory, VDB Entry 97053 Source: CCN Type: BID-97053 APNGDis Multiple Buffer Overflow Vulnerabilities Source: XF Type: UNKNOWN apngdis-cve20176192-bo(123629) Source: CCN Type: Packet Storm Security [03-22-2017] APNGDis 2.8 Buffer Overflow Source: EXPLOIT-DB Type: Exploit, Third Party Advisory, VDB Entry 41668 Source: EXPLOIT-DB Type: EXPLOIT Offensive Security Exploit Database [03-14-2017] Source: EXPLOIT-DB Type: Exploit, Third Party Advisory, VDB Entry 41669 Source: EXPLOIT-DB Type: EXPLOIT Offensive Security Exploit Database [03-14-2017] Source: MISC Type: Exploit, Third Party Advisory https://www.onvio.nl/nieuws/cve-2017-6191-apngdis-chunk-size-descriptor-buffer-overflow | ||||||||||||||||||||||||||||||||||||
Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||||||||||||||||||||||||||||||
Oval Definitions | |||||||||||||||||||||||||||||||||||||
| |||||||||||||||||||||||||||||||||||||
BACK |