CVE-2010-2249
Description
Memory leak in pngrutil.c in libpng before 1.2.44, and 1.4.x before 1.4.3, allows remote attackers to cause a denial of service (memory consumption and application crash) via a PNG image containing malformed Physical Scale (aka sCAL) chunks.
Risk Information
Base Score
6.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
1.567
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities are affected in Apple iTunes (X64) 10.1.2 | Windows |
| Multiple Vulnerabilities are affected in Apple iTunes 10.1.2 | Windows |
| Multiple Vulnerabilities are affected in Apple iTunes For Mac 10.1.2 | Mac |
| Vulnerabilities CVE-2010-1205,CVE-2010-2249 are affected in Apple Safari for MAC 5.0.3 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari 5.0.3 | Mac |
| Multiple Vulnerabilities are affected in Apple Safari for MAC 5.0.3 | Mac |
| Vulnerabilities CVE-2010-1205,CVE-2010-2249,CVE-2011-1797 are affected in Apple Safari for MAC 5.0.3 | Mac |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-611604 | Apple Safari for MAC (MacOS Sonoma) (18.6) |
| PATCH-612606 | Apple Safari for MAC (MacOS Sequoia) (26.1) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234