Vulnerabilities > CVE-2018-10677 - Out-of-bounds Write vulnerability in Miniupnp Project Ngiflib 0.4
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The DecodeGifImg function in ngiflib.c in MiniUPnP ngiflib 0.4 lacks certain checks against width and height, which allows remote attackers to cause a denial of service (WritePixels heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted GIF file.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |