CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
EPSS
Percentile
93.3%
Multiple integer underflows in PluginPCX.cpp in FreeImage 3.17.0 and
earlier allow remote attackers to cause a denial of service (heap memory
corruption) via vectors related to the height and width of a window.
freeimage.cvs.sourceforge.net/viewvc/freeimage/FreeImage/Source/FreeImage/PluginPCX.cpp?r1=1.17&r2=1.18&pathrev=MAIN
freeimage.cvs.sourceforge.net/viewvc/freeimage/FreeImage/Source/FreeImage/PluginPCX.cpp?r1=1.18&r2=1.19&pathrev=MAIN
launchpad.net/bugs/cve/CVE-2015-0852
marc.info/?l=oss-security&m=144073280200732&w=2
nvd.nist.gov/vuln/detail/CVE-2015-0852
security-tracker.debian.org/tracker/CVE-2015-0852
www.cve.org/CVERecord?id=CVE-2015-0852