Lucene search

[email protected]NVD:CVE-2009-5018

HistoryJan 14, 2011 - 5:00 p.m.

CVE-2009-5018

2011-01-1417:00:02

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

Low

EPSS

0.019

Percentile

88.5%

JSON

Stack-based buffer overflow in gif2png.c in gif2png 2.5.3 and earlier might allow context-dependent attackers to execute arbitrary code via a long command-line argument, as demonstrated by a CGI program that launches gif2png.

Affected configurations

Nvd

Node

catbgif2pngRange≤2.5.3

catbgif2pngMatch0.99

catbgif2pngMatch1.0.0

catbgif2pngMatch1.1.0

catbgif2pngMatch1.1.1

catbgif2pngMatch1.2.0

catbgif2pngMatch1.2.1

catbgif2pngMatch1.2.2

catbgif2pngMatch2.0.0

catbgif2pngMatch2.0.1

catbgif2pngMatch2.0.2

catbgif2pngMatch2.0.3

catbgif2pngMatch2.1.1

catbgif2pngMatch2.1.2

catbgif2pngMatch2.1.3

catbgif2pngMatch2.2.0

catbgif2pngMatch2.2.1

catbgif2pngMatch2.2.2

catbgif2pngMatch2.2.3

catbgif2pngMatch2.2.4

catbgif2pngMatch2.2.5

catbgif2pngMatch2.3.0

catbgif2pngMatch2.3.1

catbgif2pngMatch2.3.2

catbgif2pngMatch2.3.3

catbgif2pngMatch2.4.0

catbgif2pngMatch2.4.1

catbgif2pngMatch2.4.2

catbgif2pngMatch2.4.3

catbgif2pngMatch2.4.4

catbgif2pngMatch2.4.5

catbgif2pngMatch2.4.6

catbgif2pngMatch2.4.7

catbgif2pngMatch2.5.0

catbgif2pngMatch2.5.1

catbgif2pngMatch2.5.2

VendorProductVersionCPE
catbgif2png*cpe:2.3:a:catb:gif2png:*:*:*:*:*:*:*:*
catbgif2png0.99cpe:2.3:a:catb:gif2png:0.99:*:*:*:*:*:*:*
catbgif2png1.0.0cpe:2.3:a:catb:gif2png:1.0.0:*:*:*:*:*:*:*
catbgif2png1.1.0cpe:2.3:a:catb:gif2png:1.1.0:*:*:*:*:*:*:*
catbgif2png1.1.1cpe:2.3:a:catb:gif2png:1.1.1:*:*:*:*:*:*:*
catbgif2png1.2.0cpe:2.3:a:catb:gif2png:1.2.0:*:*:*:*:*:*:*
catbgif2png1.2.1cpe:2.3:a:catb:gif2png:1.2.1:*:*:*:*:*:*:*
catbgif2png1.2.2cpe:2.3:a:catb:gif2png:1.2.2:*:*:*:*:*:*:*
catbgif2png2.0.0cpe:2.3:a:catb:gif2png:2.0.0:*:*:*:*:*:*:*
catbgif2png2.0.1cpe:2.3:a:catb:gif2png:2.0.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
catb	gif2png	*	cpe:2.3:a:catb:gif2png::::::::
catb	gif2png	0.99	cpe:2.3:a:catb:gif2png:0.99:::::::*
catb	gif2png	1.0.0	cpe:2.3:a:catb:gif2png:1.0.0:::::::*
catb	gif2png	1.1.0	cpe:2.3:a:catb:gif2png:1.1.0:::::::*
catb	gif2png	1.1.1	cpe:2.3:a:catb:gif2png:1.1.1:::::::*
catb	gif2png	1.2.0	cpe:2.3:a:catb:gif2png:1.2.0:::::::*
catb	gif2png	1.2.1	cpe:2.3:a:catb:gif2png:1.2.1:::::::*
catb	gif2png	1.2.2	cpe:2.3:a:catb:gif2png:1.2.2:::::::*
catb	gif2png	2.0.0	cpe:2.3:a:catb:gif2png:2.0.0:::::::*
catb	gif2png	2.0.1	cpe:2.3:a:catb:gif2png:2.0.1:::::::*