Articles with tag: Cgi
                                            
                                        
                                                            POSTED BY:
                                                            
                                                                
								
                                           			   Patroklos Argyroudis
                                       				
								
                                                                /
                                                            
                                                            
                        
                            14.10.2009
                                                        
                                                    
                                                    
                                                    
                                                        
                                                        gif2png command line buffer overflow
| CENSUS ID: | CENSUS-2009-0006 | 
| CVE ID: | CVE-2009-5018 | 
| Affected Products: | gif2png versions ≤ 2.5.1. | 
| Class: | Improper Input Validation (CWE-20), Failure to Constrain Operations within the Bounds of a Memory Buffer (CWE-119) | 
| Remote: | Yes (when gif2png is used by CGI programs) | 
| Discovered by: | Patroklos Argyroudis | 
We have discovered an “improper input validation” vulnerability in the gif2png utility that leads to a stack buffer overflow.
