Executive Summary

Informations
Name CVE-2014-9495 First vendor Publication 2015-01-10
Vendor Cve Last vendor Modification 2016-10-18

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C)
Cvss Base Score 10 Attack Range Network
Cvss Impact Score 10 Attack Complexity Low
Cvss Expoit Score 10 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Heap-based buffer overflow in the png_combine_row function in libpng before 1.5.21 and 1.6.x before 1.6.16, when running on 64-bit systems, might allow context-dependent attackers to execute arbitrary code via a "very wide interlaced" PNG image.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9495

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-119 Failure to Constrain Operations within the Bounds of a Memory Buffer

CPE : Common Platform Enumeration

TypeDescriptionCount
Application 2
Application 648
Os 107

Nessus® Vulnerability Scanner

Date Description
2016-03-22 Name : The remote Mac OS X host is affected by multiple vulnerabilities.
File : macosx_10_11_4.nasl - Type : ACT_GATHER_INFO
2016-03-22 Name : The remote host is missing a Mac OS X update that fixes multiple vulnerabilit...
File : macosx_SecUpd2016-002.nasl - Type : ACT_GATHER_INFO
2015-05-20 Name : The remote SUSE host is missing one or more security updates.
File : suse_SU-2015-0092-1.nasl - Type : ACT_GATHER_INFO
2015-03-30 Name : The remote Mandriva Linux host is missing one or more security updates.
File : mandriva_MDVSA-2015-090.nasl - Type : ACT_GATHER_INFO
2015-03-10 Name : The remote Fedora host is missing a security update.
File : fedora_2015-2765.nasl - Type : ACT_GATHER_INFO
2015-03-10 Name : The remote Fedora host is missing a security update.
File : fedora_2015-2830.nasl - Type : ACT_GATHER_INFO
2015-03-10 Name : The remote Fedora host is missing a security update.
File : fedora_2015-2863.nasl - Type : ACT_GATHER_INFO
2015-02-16 Name : The remote Gentoo host is missing one or more security-related patches.
File : gentoo_GLSA-201502-10.nasl - Type : ACT_GATHER_INFO
2015-01-29 Name : The remote openSUSE host is missing a security update.
File : openSUSE-2015-79.nasl - Type : ACT_GATHER_INFO

Sources (Detail)

Source Url
APPLE http://lists.apple.com/archives/security-announce/2016/Mar/msg00004.html
BID http://www.securityfocus.com/bid/71820
CONFIRM http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html
https://support.apple.com/HT206167
MLIST http://sourceforge.net/p/png-mng/mailman/message/33172831/
http://sourceforge.net/p/png-mng/mailman/message/33173461/
http://www.openwall.com/lists/oss-security/2015/01/04/3
http://www.openwall.com/lists/oss-security/2015/01/10/1
http://www.openwall.com/lists/oss-security/2015/01/10/3
SECTRACK http://www.securitytracker.com/id/1031444
SECUNIA http://secunia.com/advisories/62725

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
Date Informations
2022-02-01 01:18:20
  • Multiple Updates
2021-05-05 01:16:20
  • Multiple Updates
2021-05-04 12:35:08
  • Multiple Updates
2021-04-22 01:42:52
  • Multiple Updates
2020-09-10 01:11:43
  • Multiple Updates
2020-05-23 01:53:55
  • Multiple Updates
2020-05-23 00:43:01
  • Multiple Updates
2019-07-19 12:03:45
  • Multiple Updates
2019-07-18 12:06:26
  • Multiple Updates
2017-03-01 12:01:06
  • Multiple Updates
2016-10-18 12:04:09
  • Multiple Updates
2016-09-01 01:02:35
  • Multiple Updates
2016-06-29 00:43:21
  • Multiple Updates
2016-04-27 01:34:19
  • Multiple Updates
2016-03-30 05:23:26
  • Multiple Updates
2016-03-25 09:24:21
  • Multiple Updates
2016-03-23 13:26:11
  • Multiple Updates
2015-05-21 13:31:57
  • Multiple Updates
2015-03-31 13:29:07
  • Multiple Updates
2015-03-11 13:24:58
  • Multiple Updates
2015-02-17 13:25:06
  • Multiple Updates
2015-02-12 00:22:43
  • Multiple Updates
2015-02-06 09:23:13
  • Multiple Updates
2015-01-30 13:24:24
  • Multiple Updates
2015-01-22 17:23:52
  • Multiple Updates
2015-01-13 05:23:54
  • Multiple Updates
2015-01-11 00:21:44
  • First insertion