CVE-2010-1513
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2010-1513
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Multiple integer overflows in src/image.c in Ziproxy before 3.0.1 allow remote attackers to execute arbitrary code via (1) a large JPG image, related to the jpg2bitmap function or (2) a large PNG image, related to the png2bitmap function, leading to heap-based buffer overflows.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Ziproxy'src/image.c'多个整数溢出漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Ziproxy是转发压缩HTTP代理服务器,可将图像压缩为低质量的JPEG或JPEG 2000文件并压缩HTML和其他文字类的数据。 Ziproxy 程序'src/image.c'存在多个整数溢出漏洞, 远程攻击者可以通过多个方式引发基于堆的缓冲区溢出和执行任意代码,包括:(1)一个超大的JPG图象, 与函数jpg2bitmap相关, 或(2)一个超大的PNG图像,与函数png2bitmap相关。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2010-1513
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2010-1513
Please Login to view more intelligence information
- http://ziproxy.sourceforge.net/#newsx_refsource_CONFIRM
- http://secunia.com/secunia_research/2010-75/x_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2010-1513
Same Patch Batch · n/a · 2010-05-26 · 14 CVEs total
| CVE-2010-2025 | Cisco Scientific Atlanta WebSTAR DPC2100R2调试解调器跨站请求伪造漏洞 | |
| CVE-2010-2026 | Cisco Scientific Atlanta WebSTAR DPC2100R2电缆调制解调器绕过认证漏洞 | |
| CVE-2010-2082 | Cisco Scientific Atlanta WebSTAR DPC2100R2 电缆调制解调器 权限管理和访问控制漏洞 | |
| CVE-2010-2083 | Microsoft Dynamics GP权限管理和访问控制漏洞 | |
| CVE-2009-4873 | Rhinosoft Serv-U Web客户端HTTP请求远程溢出漏洞 | |
| CVE-2009-4874 | Scripts.Oldguy TalkBack Security Bypass and Remote 远程命令执行漏洞 | |
| CVE-2009-4875 | FCKeditor.Java 拒绝服务漏洞 | |
| CVE-2009-4876 | Netrix CMS 脚本'admin/cikkform.php'权限许可和访问控制漏洞 | |
| CVE-2009-4877 | Plainblack WebGUI 多个跨站请求伪造漏洞 | |
| CVE-2009-4878 | Novell Access Manager 'Administration Console' 信息泄露漏洞 | |
| CVE-2009-4879 | Novell Access Manager身份认证服务安全认证绕过漏洞 | |
| CVE-2010-1639 | ClamAV cli_pdf函数拒绝服务攻击漏洞 | |
| CVE-2010-1640 | ClamAV 数字错误漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service - CVE-2026-8267
Open5GS SMF smf_nsmf_handle_created_data_in_vsmf denial of s - CVE-2026-8266
Open5GS SMF gsm-build.c gsm_build_pdu_session_establishment_ - CVE-2026-8261
Squirrel sqobject.cpp Load heap-based overflow - CVE-2026-8258
Squirrel sqstdstring.cpp validate_format stack-based overflo
V. Comments for CVE-2010-1513
No comments yet