QwikSec

Security Database

CVE

CWE

Training

CVE-2004-0990

Published: Oct 28, 2004

Modified: Aug 8, 2024

PUBLISHED

Description

Integer overflow in GD Graphics Library libgd 2.0.28 (libgd2), and possibly other versions, allows remote attackers to cause a denial of service and possibly execute arbitrary code via PNG image files with large image rows values that lead to a heap-based buffer overflow in the gdImageCreateFromPngCtx function, a different set of vulnerabilities than CVE-2004-0941.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

third-party-advisory

government-resource

x_refsource_CIAC

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_OSVDB

third-party-advisory

x_refsource_SECUNIA

vdb-entry

x_refsource_BID

gd-png-bo(17866)

vdb-entry

x_refsource_XF

vendor-advisory

x_refsource_REDHAT

vendor-advisory

x_refsource_DEBIAN

vendor-advisory

x_refsource_MANDRIVA

oval:org.mitre.oval:def:1260

vdb-entry

signature

x_refsource_OVAL

SUSE-SR:2006:003

vendor-advisory

x_refsource_SUSE

vendor-advisory

x_refsource_TRUSTIX

https://issues.rpath.com/browse/RPL-939

x_refsource_CONFIRM

vendor-advisory

x_refsource_DEBIAN

vendor-advisory

x_refsource_MANDRIVA

vendor-advisory

x_refsource_DEBIAN

vendor-advisory

x_refsource_MANDRAKE

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_MANDRIVA

vendor-advisory

x_refsource_UBUNTU

oval:org.mitre.oval:def:9952

vdb-entry

signature

x_refsource_OVAL

20041026 libgd integer overflow

mailing-list

x_refsource_BUGTRAQ

vendor-advisory

x_refsource_UBUNTU

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_DEBIAN

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.