Computer Security
[EN] securityvulns.ru no-pyccku


Dillo browser integer overflow
Published:06.07.2009
Source:
SecurityVulns ID:10045
Type:client
Threat Level:
5/10
Description:Integer overflow on PNG parsing.
Affected:DILLO : Dillo 2.1
CVE:CVE-2009-2294 (Integer overflow in the Png_datainfo_callback function in Dillo 2.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a PNG image with crafted (1) width or (2) height values.)
Original documentdocumentAndrea Barisani, [oCERT-2009-008] Dillo integer overflow (06.07.2009)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod