CVE-2005-3662 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2005-3662
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2005-3662

Description: Off-by-one buffer overflow in pnmtopng before 2.39, when using the -alpha command line option (Alphas_Of_Color), allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PNM file with exactly 256 colors.

CVE Status: Candidate

References: UBUNTU http://www.ubuntulinux.org/support/documentation/usn/usn-218-1 SUSE http://www.novell.com/linux/security/advisories/2005_28_sr.html SGI SAID Secunia Advisory: SA17671 Secunia Advisory: SA18517 Secunia Advisory: SA18186 Secunia Advisory: SA17679 Secunia Advisory: SA17828 Secunia Advisory: SA17544 REDHAT http://www.redhat.com/support/errata/RHSA-2005-843.html MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2005:217 DEBIAN http://www.debian.org/security/2005/dsa-904 CONFIRM http://sourceforge.net/project/shownotes.php?release_id=370545 BID 15427

Return to the previous page.