• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

LibPNG Graphics Library Multiple Remote Vulnerabilities

References:

• GraphicsMagick: Release Notes (GraphicsMagick)
  
• ImageMagick 6.0.4: ChangeLog (ImageMagick)
  
• ImageMagick Homepage (ImageMagick)
  
• Known Vulnerabilities in Mozilla (Mozilla)
  
• libpng Downloads (libpng)
  
• libpng Homepage (libpng)
  
• libpng mail client exploit (CORE Security)
  
• Microsoft Security Bulletin MS05-009 (Microsoft)
  
• Mozilla Bug 251381 - new libpng buffer overflow vulnerabilities (Mozilla)
  
• RHSA-2004:402-08 - Updated libpng packages fix security issues (RedHat)
  
• RHSA-2004:421-17 - Updated mozilla packages fix security issues (RedHat)
  
• Sun Alert ID: 57617 - Multiple Security Vulnerabilities in PNG. (Sun)
  
• Sun Alert ID: 57683 - Security Vulnerability in Netscape 7 With PNG Files (Sun)
  
• SVG Zone (Adobe)
  
• TA04-217A - Multiple Vulnerabilities in libpng (US-CERT)
  
• CESA-2004-001: libpng (chris@scary.beasts.org)
  
• CORE-2004-0819: MSN Messenger PNG Image Parsing Vulnerability (CORE Security Technologies Advisories )