CVE-2004-0597 - OpenCVE

Multiple buffer overflows in libpng 1.2.5 and earlier, as used in multiple products, allow remote attackers to execute arbitrary code via malformed PNG images in which (1) the png_handle_tRNS function does not properly validate the length of transparency chunk (tRNS) data, or the (2) png_handle_sBIT or (3) png_handle_hIST functions do not perform sufficient bounds checking.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Greg Roelofs	Libpng
Microsoft	Msn Messenger Windows 98se Windows Me Windows Media Player Windows Messenger
Redhat	Enterprise Linux

Configuration 1 [-]

OR	cpe:2.3:a:greg_roelofs:libpng::::::::
	cpe:2.3:a:microsoft:msn_messenger:6.1:::::::*
	cpe:2.3:a:microsoft:msn_messenger:6.2:::::::*
	cpe:2.3:a:microsoft:windows_media_player:9:::::::*
	cpe:2.3:a:microsoft:windows_messenger:5.0:::::::*

Configuration 2 [-]

OR	cpe:2.3:o:microsoft:windows_98se::::::::
	cpe:2.3:o:microsoft:windows_me:::second_edition:::::*

Package	CPE	Advisory	Released Date
Red Hat Enterprise Linux 2.1
galeon	cpe:/o:redhat:enterprise_linux:2.1	RHSA-2004:421	2004-08-04T00:00:00Z
Red Hat Enterprise Linux 3
libpng-2:1.2.2-25	cpe:/o:redhat:enterprise_linux:3	RHSA-2004:402	2004-08-04T00:00:00Z
libpng10-0:1.0.13-15	cpe:/o:redhat:enterprise_linux:3	RHSA-2004:402	2004-08-04T00:00:00Z
mozilla	cpe:/o:redhat:enterprise_linux:3	RHSA-2004:421	2004-08-04T00:00:00Z
Red Hat Enterprise Linux ES version 2.1
	cpe:/o:redhat:enterprise_linux:2.1	RHSA-2004:429	2004-08-18T00:00:00Z
Red Hat Enterprise Linux WS version 2.1
	cpe:/o:redhat:enterprise_linux:2.1	RHSA-2004:429	2004-08-18T00:00:00Z

References

Link	Providers
ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000856
http://lists.apple.com/mhonarc/security-announce/msg00056.html
http://marc.info/?l=bugtraq&m=109163866717909&w=2
http://marc.info/?l=bugtraq&m=109181639602978&w=2
http://marc.info/?l=bugtraq&m=109761239318458&w=2
http://marc.info/?l=bugtraq&m=109900315219363&w=2
http://marc.info/?l=bugtraq&m=110796779903455&w=2
http://scary.beasts.org/security/CESA-2004-001.txt
http://secunia.com/advisories/22957
http://secunia.com/advisories/22958
http://sunsolve.sun.com/search/document.do?assetkey=1-66-200663-1
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-114816-02-1
http://www.adobe.com/support/downloads/detail.jsp?ftpID=2679
http://www.coresecurity.com/common/showdoc.php?idx=421&idxseccion=10
http://www.debian.org/security/2004/dsa-536
http://www.gentoo.org/security/en/glsa/glsa-200408-03.xml
http://www.gentoo.org/security/en/glsa/glsa-200408-22.xml
http://www.kb.cert.org/vuls/id/388984
http://www.kb.cert.org/vuls/id/817368
http://www.mandriva.com/security/advisories?name=MDKSA-2004:079
http://www.mandriva.com/security/advisories?name=MDKSA-2006:212
http://www.mandriva.com/security/advisories?name=MDKSA-2006:213
http://www.mozilla.org/projects/security/known-vulnerabilities.html
http://www.novell.com/linux/security/advisories/2004_23_libpng.html
http://www.redhat.com/support/errata/RHSA-2004-402.html
http://www.redhat.com/support/errata/RHSA-2004-421.html
http://www.redhat.com/support/errata/RHSA-2004-429.html
http://www.securityfocus.com/bid/10857
http://www.securityfocus.com/bid/15495
http://www.trustix.net/errata/2004/0040/
http://www.us-cert.gov/cas/techalerts/TA04-217A.html
http://www.us-cert.gov/cas/techalerts/TA05-039A.html
https://bugzilla.fedora.us/show_bug.cgi?id=1943
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-009
https://exchange.xforce.ibmcloud.com/vulnerabilities/16894
https://nvd.nist.gov/vuln/detail/CVE-2004-0597
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11284
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2274
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2378
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4492
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A594
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A7709
https://www.cve.org/CVERecord?id=CVE-2004-0597

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2004-08-05T04:00:00

Updated: 2024-08-08T00:24:26.488Z

Reserved: 2004-06-23T00:00:00

Link: CVE-2004-0597

Vulnrichment

No data.

NVD

Status : Modified

Published: 2004-11-23T05:00:00.000

Modified: 2018-10-12T21:34:52.310

Link: CVE-2004-0597

Redhat

Severity : Critical

Publid Date: 2004-08-04T00:00:00Z

Links: CVE-2004-0597 - Bugzilla

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object