Описание
Use-after-free vulnerability in opngreduc.c in OptiPNG Hg and 0.7.x before 0.7.3 might allow remote attackers to execute arbitrary code via unspecified vectors related to "palette reduction."
Ссылки
- Exploit
- PatchVendor Advisory
- Vendor Advisory
- ExploitPatch
- ExploitPatch
- Exploit
- PatchVendor Advisory
- Vendor Advisory
- ExploitPatch
- ExploitPatch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:optipng:optipng:0.7.0:*:*:*:*:*:*:*
cpe:2.3:a:optipng:optipng:0.7.1:*:*:*:*:*:*:*
cpe:2.3:a:optipng:optipng:0.7.2:*:*:*:*:*:*:*
cpe:2.3:a:optipng:optipng:hg:*:*:*:*:*:*:*
EPSS
Процентиль: 87%
0.03636
Низкий
7.5 High
CVSS2
Дефекты
CWE-399
Связанные уязвимости
ubuntu
больше 13 лет назад
Use-after-free vulnerability in opngreduc.c in OptiPNG Hg and 0.7.x before 0.7.3 might allow remote attackers to execute arbitrary code via unspecified vectors related to "palette reduction."
debian
больше 13 лет назад
Use-after-free vulnerability in opngreduc.c in OptiPNG Hg and 0.7.x be ...
github
больше 3 лет назад
Use-after-free vulnerability in opngreduc.c in OptiPNG Hg and 0.7.x before 0.7.3 might allow remote attackers to execute arbitrary code via unspecified vectors related to "palette reduction."
EPSS
Процентиль: 87%
0.03636
Низкий
7.5 High
CVSS2
Дефекты
CWE-399