CVE-2009-5018
published 2011-01-14CVE-2009-5018: Stack-based buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers to execute arbitrary code via a long command-line…
PriorityP347medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
10.90%
95.3th percentile
Stack-based buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers to execute arbitrary code via a long command-line argument, as demonstrated by a CGI program that launches gif2png.
Affected
38 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| catb | gif2png | <= 2.5.3 | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
| catb | gif2png | — | — |
CVSS provenance
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv6.8MEDIUM
vendor_redhat6.8MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
gif2png: command-line buffer overflow problem
vendor_redhat·2009-10-14·CVSS 6.8
CVE-2009-5018 [MEDIUM] gif2png: command-line buffer overflow problem
gif2png: command-line buffer overflow problem
Stack-based buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers to execute arbitrary code via a long command-line argument, as demonstrated by a CGI program that launches gif2png.
Red Hat
gif2png: command-line buffer overflow problem
vendor_redhat·2009-10-14·CVSS 6.8
CVE-2010-4695 [MEDIUM] gif2png: command-line buffer overflow problem
gif2png: command-line buffer overflow problem
A certain Fedora patch for gif2png.c in gif2png 2.5.1 and 2.5.2, as distributed in gif2png-2.5.1-1200.fc12 on Fedora 12 and gif2png_2.5.2-1 on Debian GNU/Linux, truncates a GIF pathname specified on the command line, which might allow remote attackers to create PNG files in unintended directories via a crafted command-line argument, as demonstrated by a CGI program that launches gif2png, a different vulnerability than CVE-2009-5018.
Red Hat
gif2png: command-line buffer overflow problem
vendor_redhat·2009-10-14·CVSS 6.8
CVE-2010-4694 [MEDIUM] gif2png: command-line buffer overflow problem
gif2png: command-line buffer overflow problem
Buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers to cause a denial of service (application crash) or have unspecified other impact via a GIF file that contains many images, leading to long extensions such as .p100 for PNG output files, as demonstrated by a CGI program that launches gif2png, a different vulnerability than CVE-2009-5018.
GHSA
GHSA-crj4-gj97-jggx: A certain Fedora patch for gif2png
ghsa_unreviewed·2022-05-17·CVSS 6.8
CVE-2010-4695 [MEDIUM] CWE-119 GHSA-crj4-gj97-jggx: A certain Fedora patch for gif2png
A certain Fedora patch for gif2png.c in gif2png 2.5.1 and 2.5.2, as distributed in gif2png-2.5.1-1200.fc12 on Fedora 12 and gif2png_2.5.2-1 on Debian GNU/Linux, truncates a GIF pathname specified on the command line, which might allow remote attackers to create PNG files in unintended directories via a crafted command-line argument, as demonstrated by a CGI program that launches gif2png, a different vulnerability than CVE-2009-5018.
GHSA
GHSA-q5cv-2mrg-wvw2: Buffer overflow in gif2png
ghsa_unreviewed·2022-05-17·CVSS 6.8
CVE-2010-4694 [MEDIUM] CWE-119 GHSA-q5cv-2mrg-wvw2: Buffer overflow in gif2png
Buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers to cause a denial of service (application crash) or have unspecified other impact via a GIF file that contains many images, leading to long extensions such as .p100 for PNG output files, as demonstrated by a CGI program that launches gif2png, a different vulnerability than CVE-2009-5018.
GHSA
GHSA-4g27-cp2v-vp66: Stack-based buffer overflow in gif2png
ghsa_unreviewed·2022-05-02
CVE-2009-5018 [MEDIUM] CWE-119 GHSA-4g27-cp2v-vp66: Stack-based buffer overflow in gif2png
Stack-based buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers to execute arbitrary code via a long command-line argument, as demonstrated by a CGI program that launches gif2png.
OSV
CVE-2010-4695: A certain Fedora patch for gif2png
osv·2011-01-14·CVSS 6.8
CVE-2010-4695 [MEDIUM] CVE-2010-4695: A certain Fedora patch for gif2png
A certain Fedora patch for gif2png.c in gif2png 2.5.1 and 2.5.2, as distributed in gif2png-2.5.1-1200.fc12 on Fedora 12 and gif2png_2.5.2-1 on Debian GNU/Linux, truncates a GIF pathname specified on the command line, which might allow remote attackers to create PNG files in unintended directories via a crafted command-line argument, as demonstrated by a CGI program that launches gif2png, a different vulnerability than CVE-2009-5018.
OSV
CVE-2010-4694: Buffer overflow in gif2png
osv·2011-01-14·CVSS 6.8
CVE-2010-4694 [MEDIUM] CVE-2010-4694: Buffer overflow in gif2png
Buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers to cause a denial of service (application crash) or have unspecified other impact via a GIF file that contains many images, leading to long extensions such as .p100 for PNG output files, as demonstrated by a CGI program that launches gif2png, a different vulnerability than CVE-2009-5018.
No detection rules found.
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550978http://bugs.gentoo.org/show_bug.cgi?id=346501http://cvs.fedoraproject.org/viewvc/rpms/gif2png/devel/gif2png-overflow.patch?root=extras&view=loghttp://lists.fedoraproject.org/pipermail/package-announce/2010-November/051229.htmlhttp://lists.grok.org.uk/pipermail/full-disclosure/2009-December/072009.htmlhttp://openwall.com/lists/oss-security/2010/11/21/1http://openwall.com/lists/oss-security/2010/11/22/1http://openwall.com/lists/oss-security/2010/11/22/12http://openwall.com/lists/oss-security/2010/11/22/3http://secunia.com/advisories/42796http://security.gentoo.org/glsa/glsa-201101-01.xmlhttp://www.mandriva.com/security/advisories?name=MDVSA-2011:009http://www.securityfocus.com/bid/41801http://www.vupen.com/english/advisories/2010/3036http://www.vupen.com/english/advisories/2011/0023http://www.vupen.com/english/advisories/2011/0107https://bugzilla.redhat.com/show_bug.cgi?id=547515https://exchange.xforce.ibmcloud.com/vulnerabilities/64820http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=550978http://bugs.gentoo.org/show_bug.cgi?id=346501http://cvs.fedoraproject.org/viewvc/rpms/gif2png/devel/gif2png-overflow.patch?root=extras&view=loghttp://lists.fedoraproject.org/pipermail/package-announce/2010-November/051229.htmlhttp://lists.grok.org.uk/pipermail/full-disclosure/2009-December/072009.htmlhttp://openwall.com/lists/oss-security/2010/11/21/1http://openwall.com/lists/oss-security/2010/11/22/1http://openwall.com/lists/oss-security/2010/11/22/12http://openwall.com/lists/oss-security/2010/11/22/3http://secunia.com/advisories/42796http://security.gentoo.org/glsa/glsa-201101-01.xmlhttp://www.mandriva.com/security/advisories?name=MDVSA-2011:009http://www.securityfocus.com/bid/41801http://www.vupen.com/english/advisories/2010/3036http://www.vupen.com/english/advisories/2011/0023http://www.vupen.com/english/advisories/2011/0107https://bugzilla.redhat.com/show_bug.cgi?id=547515https://exchange.xforce.ibmcloud.com/vulnerabilities/64820
2011-01-14
Published