CVE-2010-1205: CVE-2010-1205

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2010-1205

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Buffer overflow in pngpread.c in libpng before 1.2.44 and 1.4.x before 1.4.3, as used in progressive applications, might allow remote attackers to execute arbitrary code via a PNG image that triggers an additional data row.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

libpng 缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

libpng是一个可对PNG图形文件实现创建、读写等操作的PNG参考库。 libpng 库在处理图形行数据时存在缓冲区错误漏洞，如果图形文件中提供了比头中报告的高度多出一个额外的图形行的话，就可以触发这个溢出，导致执行任意代码；此外在处理某些sCAL块时可能出现内存泄露，特制的PNG图形可能导致拒绝服务。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2010-1205

#	POC Description	Source Link	Shenlong Link
1	sample exploit of buffer overflow in libpng	https://github.com/mk219533/CVE-2010-1205	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2010-1205

Please Login to view more intelligence information

https://bugzilla.mozilla.org/show_bug.cgi?id=570451x_refsource_CONFIRM
http://support.apple.com/kb/HT4457x_refsource_CONFIRM
http://www.libpng.org/pub/png/libpng.htmlx_refsource_CONFIRM
http://trac.webkit.org/changeset/61816x_refsource_CONFIRM
https://bugs.webkit.org/show_bug.cgi?id=40798x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=608238x_refsource_CONFIRM
http://support.apple.com/kb/HT4456x_refsource_CONFIRM
http://support.apple.com/kb/HT4554x_refsource_CONFIRM
http://blackberry.com/btsc/KB27244x_refsource_CONFIRM
http://support.apple.com/kb/HT4435x_refsource_CONFIRM
http://code.google.com/p/chromium/issues/detail?id=45983x_refsource_CONFIRM
http://www.vmware.com/security/advisories/VMSA-2010-0014.htmlx_refsource_CONFIRM
http://support.apple.com/kb/HT4312x_refsource_CONFIRM
http://support.apple.com/kb/HT4566x_refsource_CONFIRM
http://googlechromereleases.blogspot.com/2010/07/stable-channel-update.htmlx_refsource_CONFIRM
http://www.mozilla.org/security/announce/2010/mfsa2010-41.htmlx_refsource_CONFIRM
http://libpng.git.sourceforge.net/git/gitweb.cgi?p=libpng/libpng%3Ba=commitdiff%3Bh=188eb6b42602bf7d7ae708a21897923b6a83fe7c#patch18x_refsource_CONFIRM
http://secunia.com/advisories/40547third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/42317third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/40302third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/42314third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/41174vdb-entryx_refsource_BID
http://secunia.com/advisories/40336third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/40472third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/41574third-party-advisoryx_refsource_SECUNIA
http://www.debian.org/security/2010/dsa-2072vendor-advisoryx_refsource_DEBIAN
http://www.ubuntu.com/usn/USN-960-1vendor-advisoryx_refsource_UBUNTU
http://www.vupen.com/english/advisories/2010/3045vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/1637vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/1846vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/2491vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/1877vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/1612vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/1837vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/1755vdb-entryx_refsource_VUPEN
http://www.vupen.com/english/advisories/2010/3046vdb-entryx_refsource_VUPEN
http://www.mandriva.com/security/advisories?name=MDVSA-2010:133vendor-advisoryx_refsource_MANDRIVA
http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.613061vendor-advisoryx_refsource_SLACKWARE
http://lists.opensuse.org/opensuse-security-announce/2010-09/msg00006.htmlvendor-advisoryx_refsource_SUSE
http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044283.htmlvendor-advisoryx_refsource_FEDORA
http://lists.fedoraproject.org/pipermail/package-announce/2010-July/044397.htmlvendor-advisoryx_refsource_FEDORA
http://lists.apple.com/archives/security-announce/2010//Nov/msg00003.htmlvendor-advisoryx_refsource_APPLE
http://lists.apple.com/archives/security-announce/2011//Mar/msg00004.htmlvendor-advisoryx_refsource_APPLE
http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.htmlvendor-advisoryx_refsource_APPLE
http://lists.apple.com/archives/security-announce/2011/Mar/msg00000.htmlvendor-advisoryx_refsource_APPLE
http://lists.apple.com/archives/security-announce/2010//Aug/msg00003.htmlvendor-advisoryx_refsource_APPLE
https://exchange.xforce.ibmcloud.com/vulnerabilities/59815vdb-entryx_refsource_XF
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11851vdb-entrysignaturex_refsource_OVAL
http://lists.vmware.com/pipermail/security-announce/2010/000105.htmlmailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2010-1205

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2010-1205

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2010-1205

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2010-1205

III. Intelligence Information for CVE-2010-1205

New Vulnerabilities

V. Comments for CVE-2010-1205

Leave a comment