NVD Vulnerability Detail

CVE-2004-0597

Summary	Multiple buffer overflows in libpng 1.2.5 and earlier, as used in multiple products, allow remote attackers to execute arbitrary code via malformed PNG images in which (1) the png_handle_tRNS function does not properly validate the length of transparency chunk (tRNS) data, or the (2) png_handle_sBIT or (3) png_handle_hIST functions do not perform sufficient bounds checking.
Publication Date	Nov. 23, 2004, 2 p.m.
Registration Date	Jan. 29, 2021, 6 p.m.
Last Update	Oct. 13, 2018, 6:34 a.m.

CVSS2.0 : HIGH
Score	10.0
Vector	AV:N/AC:L/Au:N/C:C/I:C/A:C
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	高
完全性への影響(I)	高
可用性への影響(A)	高
Get all privileges.	はい
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	いいえ

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:greg_roelofs:libpng::::::::		1.2.5
cpe:2.3:a:microsoft:msn_messenger:6.1:::::::*
cpe:2.3:a:microsoft:msn_messenger:6.2:::::::*
cpe:2.3:a:microsoft:windows_media_player:9:::::::*
cpe:2.3:a:microsoft:windows_messenger:5.0:::::::*

Configuration2	or higher	or less	more than	less than
cpe:2.3:o:microsoft:windows_98se::::::::
cpe:2.3:o:microsoft:windows_me:::second_edition:::::*

Related information, measures and tools

No	URL	refsource	タグ
1	ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt	SCO
2	http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000856	CONECTIVA
3	http://lists.apple.com/mhonarc/security-announce/msg00056.html	APPLE
4	http://marc.info/?l=bugtraq&m=109163866717909&w=2	BUGTRAQ
5	http://marc.info/?l=bugtraq&m=109181639602978&w=2	HP
6	http://marc.info/?l=bugtraq&m=109761239318458&w=2	SCO
7	http://marc.info/?l=bugtraq&m=109900315219363&w=2	FEDORA
8	http://marc.info/?l=bugtraq&m=110796779903455&w=2	BUGTRAQ
9	http://scary.beasts.org/security/CESA-2004-001.txt	MISC	Exploit Vendor Advisory
10	http://secunia.com/advisories/22957	SECUNIA
11	http://secunia.com/advisories/22958	SECUNIA
12	http://sunsolve.sun.com/search/document.do?assetkey=1-66-200663-1	SUNALERT
13	http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-114816-02-1	CONFIRM
14	http://www.adobe.com/support/downloads/detail.jsp?ftpID=2679	CONFIRM	Patch
15	http://www.coresecurity.com/common/showdoc.php?idx=421&idxseccion=10	MISC
16	http://www.debian.org/security/2004/dsa-536	DEBIAN	Patch Vendor Advisory
17	http://www.gentoo.org/security/en/glsa/glsa-200408-03.xml	GENTOO	Patch Vendor Advisory
18	http://www.gentoo.org/security/en/glsa/glsa-200408-22.xml	GENTOO	Patch Vendor Advisory
19	http://www.kb.cert.org/vuls/id/388984	CERT-VN	Third Party Advisory US Government Resource
20	http://www.kb.cert.org/vuls/id/817368	CERT-VN	Third Party Advisory US Government Resource
21	http://www.mandriva.com/security/advisories?name=MDKSA-2004:079	MANDRAKE
22	http://www.mandriva.com/security/advisories?name=MDKSA-2006:212	MANDRIVA
23	http://www.mandriva.com/security/advisories?name=MDKSA-2006:213	MANDRIVA
24	http://www.mozilla.org/projects/security/known-vulnerabilities.html	CONFIRM
25	http://www.novell.com/linux/security/advisories/2004_23_libpng.html	SUSE	Patch Vendor Advisory
26	http://www.redhat.com/support/errata/RHSA-2004-402.html	REDHAT
27	http://www.redhat.com/support/errata/RHSA-2004-421.html	REDHAT	Vendor Advisory
28	http://www.redhat.com/support/errata/RHSA-2004-429.html	REDHAT	Vendor Advisory
29	http://www.securityfocus.com/bid/10857	BID	Exploit Patch Vendor Advisory
30	http://www.securityfocus.com/bid/15495	BID
31	http://www.trustix.net/errata/2004/0040/	TRUSTIX	Patch Vendor Advisory
32	http://www.us-cert.gov/cas/techalerts/TA04-217A.html	CERT	Third Party Advisory US Government Resource
33	http://www.us-cert.gov/cas/techalerts/TA05-039A.html	CERT	Third Party Advisory US Government Resource
34	https://bugzilla.fedora.us/show_bug.cgi?id=1943	FEDORA
35	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-009	MS
36	https://exchange.xforce.ibmcloud.com/vulnerabilities/16894	XF
37	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11284	OVAL
38	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2274	OVAL
39	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2378	OVAL
40	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4492	OVAL
41	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A594	OVAL
42	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7709	OVAL

Common Vulnerabilities List