CVSS: 8.1EPSS: 3%CPEs: 36EXPL: 3CVE-2010-4694
https://notcve.org/view.php?id=CVE-2010-4694
14 Jan 2011 — Buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers to cause a denial of service (application crash) or have unspecified other impact via a GIF file that contains many images, leading to long extensions such as .p100 for PNG output files, as demonstrated by a CGI program that launches gif2png, a different vulnerability than CVE-2009-5018. Un desbordamiento de búfer en gif2png.c en gif2png v2.5.3 y anteriores puede permitir provocar una denegación de servicio (po... • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550978 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 2CVE-2010-4695
https://notcve.org/view.php?id=CVE-2010-4695
14 Jan 2011 — A certain Fedora patch for gif2png.c in gif2png 2.5.1 and 2.5.2, as distributed in gif2png-2.5.1-1200.fc12 on Fedora 12 and gif2png_2.5.2-1 on Debian GNU/Linux, truncates a GIF pathname specified on the command line, which might allow remote attackers to create PNG files in unintended directories via a crafted command-line argument, as demonstrated by a CGI program that launches gif2png, a different vulnerability than CVE-2009-5018. Un parche de Fedora para gif2png.c en gif2png v2.5.1 y v2.5.2, tal y como s... • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550978 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 23%CPEs: 36EXPL: 2CVE-2009-5018 – gif2png 2.5.2 - Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2009-5018
14 Jan 2011 — Stack-based buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers to execute arbitrary code via a long command-line argument, as demonstrated by a CGI program that launches gif2png. Un desbordamiento de búfer basado en pila en gif2png.c en gif2png v2.5.3 y anteriores puede permitir ejecutar código arbitrario a atacantes dependientes del contexto a través de un argumento de línea de comandos muy largo, como lo demuestra un programa CGI que lanza gif2png. • https://www.exploit-db.com/exploits/34356 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •