Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 lacks certain checks against width and height, which allows remote attackers to cause a denial of service (WritePixels heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted GIF file.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
MiniUPnP ngiflib 缓冲区错误漏洞
Vulnerability Description
MiniUPnP是MiniUPnP项目开发的一套可以用于嵌入式系统的UPnP工具。该工具可实现家庭网络和公司网络中的设备相互连接。ngiflib是其中的一个使用C语言编写的GIF图片格式解码库。 MiniUPnP ngiflib 0.4版本中的ngiflib.c文件的‘DecodeGifImg’函数存在安全漏洞,该漏洞源于程序没有检测长度和宽度。远程攻击者可借助特制的GIF文件利用该漏洞造成拒绝服务(基于堆的缓冲区溢出和应用程序崩溃)。
CVSS Information
N/A
Vulnerability Type
N/A