CVE-2011-3328

Severity Score

2.6

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

The png_handle_cHRM function in pngrutil.c in libpng 1.5.4, when color-correction support is enabled, allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a malformed PNG image containing a cHRM chunk associated with a certain zero value.

La función png_handle_cHRM en pngrutil.c en libpng 1.5.4, cuando está habilitado el soporte de corrección de color, permite a un atacante remoto causar una denegación de servicio (error de división por cero y bloqueo de aplicación) a través de una imagen PNG con formato erróneo que contiene un fragmento cHRM asociado con un determinado valor cero.

*Credits: N/A

CVSS Scores

NISTv2 2.6

Attack Vector

Network

Attack Complexity

High

Authentication

None

Confidentiality

None

Integrity

None

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2011-08-29 CVE Reserved
2012-01-17 CVE Published
2023-03-07 EPSS Updated
2024-08-06 CVE Updated
2024-08-06 First Exploit
---------- Exploited in Wild
---------- KEV Due Date

CWE

CAPEC

References (10)

URL	Tag	Source
http://support.apple.com/kb/HT5130	X_refsource_confirm
http://support.apple.com/kb/HT5281	X_refsource_confirm
http://support.apple.com/kb/HT5503	X_refsource_confirm
https://bugzilla.redhat.com/show_bug.cgi?id=740864	X_refsource_confirm

URL	Date	SRC
http://sourceforge.net/tracker/index.php?func=detail&aid=3406145&group_id=5624&atid=105624	2024-08-06

URL	Date	SRC
http://libpng.org/pub/png/libpng.html	2012-09-22
http://www.kb.cert.org/vuls/id/477046	2012-09-22

URL	Date	SRC
http://lists.apple.com/archives/security-announce/2012/Feb/msg00000.html	2012-09-22
http://lists.apple.com/archives/security-announce/2012/May/msg00001.html	2012-09-22
http://lists.apple.com/archives/security-announce/2012/Sep/msg00003.html	2012-09-22

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Greg Roelofs Search vendor "Greg Roelofs"		Libpng Search vendor "Greg Roelofs" for product "Libpng"				1.5.4 Search vendor "Greg Roelofs" for product "Libpng" and version "1.5.4"		-		Affected