Buffer Overflow in libpng's png_read_IDAT_data function

Buffer Overflow in libpng's png_read_IDAT_data function

CVE-2015-0973 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Buffer overflow in the png_read_IDAT_data function in pngrutil.c in libpng before 1.5.21 and 1.6.x before 1.6.16 allows context-dependent attackers to execute arbitrary code via IDAT data with a large width, a different vulnerability than CVE-2014-9495.

Learn more about our Web Application Penetration Testing UK.