mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-28 18:48:49 +00:00
764 B
764 B
CVE-2009-2294
Description
Integer overflow in the Png_datainfo_callback function in Dillo 2.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a PNG image with crafted (1) width or (2) height values.
POC
Reference
- http://www.ocert.org/advisories/ocert-2009-008.html
- http://www.ocert.org/advisories/ocert-2009-008.html
Github
No PoCs found on GitHub currently.