Resco Photo Viewer for PocketPC Malformed PNG File Remote Code Execution Vulnerability
BID:21920
Info
Resco Photo Viewer for PocketPC Malformed PNG File Remote Code Execution Vulnerability
| Bugtraq ID: | 21920 |
| Class: | Boundary Condition Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 08 2007 12:00AM |
| Updated: | Jan 08 2007 08:26PM |
| Credit: | Trend Micro is credited with the discovery of this vulnerability. |
| Vulnerable: |
Resco.net Resco Photo Viewer for PocketPC 6.01 Resco.net Resco Photo Viewer for PocketPC 4.11 |
| Not Vulnerable: | |
Discussion
Resco Photo Viewer for PocketPC Malformed PNG File Remote Code Execution Vulnerability
Resco Photo Viewer for PocketPC is prone to a remote code-execution vulnerability when handling a malformed PNG graphics file.
An attacker could exploit this vulnerability to corrupt memory and subsequently to execute malicious code in the context of the user running the affected application. Other attacks are also possible.
This issue affects versions 4.11 and 6.01; other versions may also be affected.
Resco Photo Viewer for PocketPC is prone to a remote code-execution vulnerability when handling a malformed PNG graphics file.
An attacker could exploit this vulnerability to corrupt memory and subsequently to execute malicious code in the context of the user running the affected application. Other attacks are also possible.
This issue affects versions 4.11 and 6.01; other versions may also be affected.
Exploit / POC
Resco Photo Viewer for PocketPC Malformed PNG File Remote Code Execution Vulnerability
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].
Solution / Fix
Resco Photo Viewer for PocketPC Malformed PNG File Remote Code Execution Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected]:[email protected].
References
Resco Photo Viewer for PocketPC Malformed PNG File Remote Code Execution Vulnerability
References:
References: