Support Content Notification - Support Portal

SA65 : ProxyAV buffer overflow in libpng (CVE-2010-1205)

Product/Component

Notification Id

1238

Last Updated

03 March 2020

Initial Publication Date

02 December 2011

Status

CLOSED

Severity

HIGH

CVSS Base Score

CVSS v2: 7.5

WorkAround

Affected CVE

SUMMARY

ProxyAV uses a version of libpng that is vulnerable to a buffer overflow attack. This vulnerability could allow a remote attacker to read and modify ProxyAV data.

AFFECTED PRODUCTS

All versions of ProxyAV prior to 3.4.1.1 are vulnerable.

Patches

ProxyAV 3.4 - a fix is available in 3.4.1.1.
ProxyAV 3.3 - a fix is avialable in 3.3.2.1.
ProxyAV 3.2 and earlier - please upgrade to a later version.

ISSUES

CVE-2010-1205 - CVSS v2 base score: 7.5 (AV:N/AC:L/Au:N/C:P/I:P/A:P)

ProxyAV uses libpng version 1.2.8 to generate statistical graphs in PNG format. This version of libpng is vulnerable to a buffer overflow attack. It is possible that a remote attacker could execute arbitrary code on ProxyAV through this library that would run with escalated privileges.

ProxyAV 3.4.1.1 contains an upgrade to libpng version 1.2.46 fixing this CVE.

MITIGATION

Deploying ProxyAV behind a firewall and adding constraints on what IP addresses can be used to connect to ProxyAV will greatly limit the ability to attack a ProxyAV installation.

REFERENCES

CVE-2010-1205 - https://nvd.nist.gov/vuln/detail/CVE-2010-1205

REVISION

2012-12-10 Notification of fix for 3.3
2011-12-02 Initial public release