| Max CVSS | 9.3 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2015-7802 | 4.3 |
gifread.c in gif2png, as used in OptiPNG before 0.7.6, allows remote attackers to cause a denial of service (uninitialized memory read) via a crafted GIF file.
|
30-10-2018 - 16:27 | 20-04-2016 - 16:59 | |
| CVE-2015-7801 | 9.3 |
Use-after-free vulnerability in OptiPNG 0.6.4 allows remote attackers to execute arbitrary code via a crafted PNG file. <a href="http://cwe.mitre.org/data/definitions/416.html">CWE-416: Use After Free</a>
|
30-10-2018 - 16:27 | 20-04-2016 - 16:59 | |
| CVE-2016-2191 | 4.3 |
The bmp_read_rows function in pngxtern/pngxrbmp.c in OptiPNG before 0.7.6 allows remote attackers to cause a denial of service (invalid memory write and crash) via a series of delta escapes in a crafted BMP image.
|
30-10-2018 - 16:27 | 13-04-2016 - 16:59 | |
| CVE-2016-3982 | 6.8 |
Off-by-one error in the bmp_rle4_fread function in pngxrbmp.c in OptiPNG before 0.7.6 allows remote attackers to cause a denial of service (out-of-bounds read or write access and crash) or possibly execute arbitrary code via a crafted image file, whi
|
30-10-2018 - 16:27 | 13-04-2016 - 16:59 | |
| CVE-2016-3981 | 9.3 |
Heap-based buffer overflow in the bmp_read_rows function in pngxrbmp.c in OptiPNG before 0.7.6 allows remote attackers to cause a denial of service (out-of-bounds read or write access and crash) or possibly execute arbitrary code via a crafted image
|
19-02-2017 - 06:19 | 13-04-2016 - 16:59 |