CVE-2020-27818

LOW

pngcheck 2.4.0 - Denial of Service via check_chunk_name() Function

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-27818. PoCs published by 13m0n4de.

AI-analyzed exploit summary The repository contains a valid PoC for CVE-2020-27818, demonstrating an out-of-bounds read vulnerability in pngcheck-2.4.0 via a crafted PNG file with a malformed chunk name. The PoC includes a Python script to generate the malicious PNG file and detailed instructions for testing.

Description

A flaw was found in the check_chunk_name() function of pngcheck-2.4.0. An attacker able to pass a malicious file to be processed by pngcheck could cause a temporary denial of service, posing a low risk to application availability.

Exploits (1)

nomisec WORKING POC

by 13m0n4de · poc

https://github.com/13m0n4de/pngcheck-vulns

View Code ZIP pw:eip

The repository contains a valid PoC for CVE-2020-27818, demonstrating an out-of-bounds read vulnerability in pngcheck-2.4.0 via a crafted PNG file with a malformed chunk name. The PoC includes a Python script to generate the malicious PNG file and detailed instructions for testing.

Classification

Working Poc 100%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: pngcheck-2.4.0

No auth needed

Prerequisites: Ability to pass a malicious PNG file to pngcheck for processing

MITRE ATT&CK