exploitDog

CVE-2017-6191

Опубликовано: 23 мар. 2017

Источник: nvd

CVSS3: 7.8

CVSS2: 6.8

EPSS Низкий

Описание

Buffer overflow in APNGDis 2.8 and below allows a remote attacker to execute arbitrary code via a crafted filename.

Ссылки

http://www.securityfocus.com/bid/97053
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/41670/
Exploit
Third Party Advisory
VDB Entry
https://www.onvio.nl/nieuws/cve-2017-6191-apngdis-filename-buffer-overflow
Exploit
Third Party Advisory
http://www.securityfocus.com/bid/97053
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/41670/
Exploit
Third Party Advisory
VDB Entry
https://www.onvio.nl/nieuws/cve-2017-6191-apngdis-filename-buffer-overflow
Exploit
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:apng_disassembler_project:apng_disassembler:*:*:*:*:*:*:*:*

Версия до 2.8 (включая)

EPSS

Процентиль: 85%

0.02639

Низкий

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-119

Связанные уязвимости

GHSA-85rx-6vqx-xc7q

CVSS3: 7.8

github

больше 3 лет назад

Buffer overflow in APNGDis 2.8 and below allows a remote attacker to execute arbitrary code via a crafted filename.

EPSS

Процентиль: 85%

0.02639

Низкий

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-119