Off-by-one Buffer Overflow in pnmtopng Allows for Denial of Service and Possible Code Execution

Off-by-one Buffer Overflow in pnmtopng Allows for Denial of Service and Possible Code Execution

CVE-2005-3662 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

Off-by-one buffer overflow in pnmtopng before 2.39, when using the -alpha command line option (Alphas_Of_Color), allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted PNM file with exactly 256 colors.

Learn more about our Web Application Penetration Testing UK.