CVE-2005-2096
Description
zlib 1.2 and later versions allows remote attackers to cause a denial of service (crash) via a crafted compressed stream with an incomplete code description of a length greater than 1, which leads to a buffer overflow, as demonstrated using a crafted PNG file.
Related CPE's
Could not find any relations
References
PatchVendor Advisory
PatchVendor Advisory
PatchVendor Advisory
Patch
Vendor Advisory
PatchVendor Advisory
Vendor Advisory
Vendor Advisory
PatchVendor Advisory
PatchVendor Advisory
Vendor Advisory
PatchVendor Advisory
Third Party AdvisoryUS Government Resource
CvssV3 impact
Could not find any metrics
CvssV2 impact
Version | 2.0 |
VectorString | AV:N/AC:L/Au:N/C:P/I:P/A:P |
AccessVector | NETWORK |
AccessComplexity | LOW |
Authentication | NONE |
ConfidentialityImpact | PARTIAL |
IntegrityImpact | PARTIAL |
AvailabilityImpact | PARTIAL |
BaseScore | 7.5 |