CVE-2004-0597 — Vulnetix

Try Vulnetix Request Demo

CVE-2004-0597 PUBLISHED CVSS 10 CRITICAL

Multiple buffer overflows in libpng 1.2.5 and earlier, as used in multiple products, allow remote attackers to execute arbitrary code via malformed PNG images in which (1) the png_handle_tRNS function does not properly validate the length of transparency chunk (tRNS) data, or the (2) png_handle_sBIT or (3) png_handle_hIST functions do not perform sufficient bounds checking.

EPSS 85.09% · 99.3th percentile

Risk Scores

CVSS v2.0

10

EPSS Score

85.09%

99.3th percentile

Affected Products

Vendor	Product	Versions
microsoft	windows_messenger	5.0
microsoft	windows_98se
microsoft	msn_messenger	6.1, 6.2
microsoft	windows_media_player	9
microsoft	windows_me
n/a	n/a	n/a
greg_roelofs	libpng	0

Timeline

CVE Published
Sep 23, 2010 PoC Published
Feb 4, 2022 EPSS Score
Mar 28, 2022 EPSS Score
May 19, 2022 EPSS Score
Sep 1, 2022 EPSS Score
Oct 23, 2022 EPSS Score
Dec 14, 2022 EPSS Score
Feb 4, 2023 EPSS Score
Mar 28, 2023 EPSS Score
May 19, 2023 EPSS Score
Jul 10, 2023 EPSS Score

References

2004-0040 vendor-advisory
200663 vendor-advisory
oval:org.mitre.oval:def:2274 vdb
http://www.mozilla.org/projects/security/known-vulnerabilities.html url
SCOSA-2005.49 vendor-advisory
RHSA-2004:421 vendor-advisory
RHSA-2004:402 vendor-advisory
GLSA-200408-22 vendor-advisory
22958 third-party-advisory
http://sunsolve.sun.com/search/document.do?assetkey=urn:cds:docid:1-21-114816-02-1 url
FLSA:2089 vendor-advisory
FLSA:1943 vendor-advisory
oval:org.mitre.oval:def:594 vdb
TA05-039A third-party-advisory
libpng-pnghandle-bo(16894) vdb
SCOSA-2004.16 vendor-advisory
http://scary.beasts.org/security/CESA-2004-001.txt url
RHSA-2004:429 vendor-advisory
oval:org.mitre.oval:def:2378 vdb
15495 vdb

…and 24 more

Open in Interactive Console →