cbcvebase.
CVE-2010-4694
published 2011-01-14

CVE-2010-4694: Buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers to cause a denial of service (application crash) or have…

PriorityP424medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EPSS
2.01%
78.4th percentile
Buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers to cause a denial of service (application crash) or have unspecified other impact via a GIF file that contains many images, leading to long extensions such as .p100 for PNG output files, as demonstrated by a CGI program that launches gif2png, a different vulnerability than CVE-2009-5018.

Affected

38 ranges· showing 25
VendorProductVersion rangeFixed in
catbgif2png<= 2.5.3
catbgif2png
catbgif2png
catbgif2png
catbgif2png
catbgif2png
catbgif2png
catbgif2png
catbgif2png
catbgif2png
catbgif2png
catbgif2png
catbgif2png
catbgif2png
catbgif2png
catbgif2png
catbgif2png
catbgif2png
catbgif2png
catbgif2png
catbgif2png
catbgif2png
catbgif2png
catbgif2png
catbgif2png

CVSS provenance

nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv6.8MEDIUM
vendor_redhat6.8MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.