PT-2024-31942 · Cute Png · Cute Png
Published
2024-10-01
·
Updated
2024-10-04
·
CVE-2024-46274
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
cute png version 1.05
Description
A heap buffer overflow issue was discovered in the cp stored() function at cute png.h. This issue can be exploited via the
cp stored() function.Recommendations
For cute png version 1.05, consider disabling the
cp stored() function as a temporary workaround until a patch is available. Restrict access to the cute png library to minimize the risk of exploitation.Exploit
Fix
Memory Corruption
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cute Png