PT-2024-31939 · Cute Png · Cute Png
Published
2024-10-01
·
Updated
2024-10-04
·
CVE-2024-46264
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
cute png version 1.05
Description
The issue is related to a heap buffer overflow that can be triggered via the
cp find() function located at cute png.h.Recommendations
For cute png version 1.05, consider disabling the
cp find() function as a temporary workaround until a patch is available. Restrict access to the cute png.h module to minimize the risk of exploitation.Exploit
Fix
Memory Corruption
Heap Based Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Cute Png