HTTP: PNG Type Chunk Overflow (2)
This signature detects attempts to exploit a known vulnerability against libpng, a library for changing and displaying Portable Network Graphic (PNG) files. libpng v1.2.5 and earlier versions are vulnerable. Attackers can create PNG image files with malformed multiple content type chunks to overflow a buffer in libpng.
Extended Description
Stack-based buffer overflow in Microsoft Windows Media Player 9 and 10 allows remote attackers to execute arbitrary code via a PNG image with a large chunk size.
Affected Products
Microsoft windows_media_player
Short Name
HTTP:STC:IMG:PNG-CHUNK-OF-2
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
(2) CVE-2004-0599 CVE-2006-0025 CVE-2012-4170 Chunk Overflow PNG Type bid:10857 bid:18385 bid:55333
Release Date
03/23/2017
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Microsoft
CVSS Score
9.3
5.0