CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2015-7802

gifread.c in gif2png, as used in OptiPNG before 0.7.6, allows remote attackers to cause a denial of service (uninitialized memory read) via a crafted GIF file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 51.0%

CVSS Severity

CVSS v3 Score 5.5

CVSS v2 Score 4.3

References

http://optipng.sourceforge.net/history.txt
http://www.ubuntu.com/usn/USN-2951-1
https://sourceforge.net/p/optipng/bugs/53/
http://optipng.sourceforge.net/history.txt
http://www.ubuntu.com/usn/USN-2951-1
https://sourceforge.net/p/optipng/bugs/53/

Products affected by CVE-2015-7802

Optipng Project » Optipng » Version: 0.7.5

cpe:2.3:a:optipng_project:optipng:0.7.5
Canonical » Ubuntu Linux » Version: 12.04

cpe:2.3:o:canonical:ubuntu_linux:12.04
Canonical » Ubuntu Linux » Version: 14.04

cpe:2.3:o:canonical:ubuntu_linux:14.04
Canonical » Ubuntu Linux » Version: 15.10

cpe:2.3:o:canonical:ubuntu_linux:15.10

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-7802

Products

Pricing

Contact Us