libpng 'png_formatted_warning()' Function Off-By-One Error Buffer Overflow Vulnerability

libpng is prone to a remote buffer-overflow vulnerability because of an off-by-one error.

Attackers can exploit this issue to crash applications that use the affected library. Attackers may also be able to run arbitrary code within the context of the vulnerable applications.

libpng 1.5.4 through 1.5.7 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus