EUVD-2007-1942

Malware in sbrugna...

SUSE-RU-2024:2684-1 Recommended update for mozilla-nss

This update for mozilla-nss fixes the following issues: - Fixed startup crash of Firefox when using FIPS-mode bsc1223724. - Added 'Provides: nss' so other RPMs that require 'nss' can be installed jira PED-6358. - FIPS: added safe memsets bsc1222811 - FIPS: restrict AES-GCM bsc1222830 - FIPS:...

livehelperchat cross-site scripting vulnerability (CNVD-2023-86325)

livehelperchat is an open source application that provides free live support on a website through live helper chat. A cross-site scripting XSS vulnerability exists in livehelperchat versions prior to 3.99, which can be exploited by an attacker to execute malicious JS scripts on the application...

CVE-2022-1530

Cross-site Scripting XSS in GitHub repository livehelperchat/livehelperchat prior to 3.99v. The attacker can execute malicious JavaScript on the application...

PT-2022-13933 · Unknown · Livehelperchat

Name of the Vulnerable Software and Affected Versions: livehelperchat/livehelperchat versions prior to 3.99v Description: The issue is related to Cross-site Scripting XSS, which allows an attacker to execute malicious JavaScript on the application. This can potentially lead to unauthorized action...

livehelperchat 跨站脚本漏洞

livehelperchat is an open source application that provides free live support on a website through live helper chat. A cross-site scripting XSS vulnerability exists in livehelperchat versions prior to 3.99, which can be exploited by an attacker to execute malicious JS scripts on the application...

CVE-2017-15045

LAME 3.99, 3.99.1, 3.99.2, 3.99.3, 3.99.4, 3.99.5, 3.98.4, 3.98.2 and 3.98 has a heap-based buffer over-read in fillbuffer in libmp3lame/util.c, related to lameencodebuffersamplet in libmp3lame/lame.c, a different vulnerability than CVE-2017-9410...

Heap overflow

LAME 3.99.5, 3.99.4, 3.99.3, 3.99.2, 3.99.1, 3.99, 3.98.4, 3.98.2 and 3.98 have a heap-based buffer over-read when handling a malformed file in k344 in vbrquantize.c...

Microsoft Office 2003 - Denial of Service (DoS) Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22716/info Microsoft Office is prone to a denial-of-service condition when the malformed WMF file is viewed in an Office application. Exploiting this issue allows remote attackers to crash applications, denying service to...

Buffer overflow

Buffer overflow in IrfanView 3.99 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via the 1 xoffset or 2 yoffset RLE command, or 3 large non-RLE encoded blocks in a crafted BMP image, as demonstrated by rle8of3.bmp and rle8of4.bmp...

CVE-2007-1948

Buffer overflow in IrfanView 3.99 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via the 1 xoffset or 2 yoffset RLE command, or 3 large non-RLE encoded blocks in a crafted BMP image, as demonstrated by rle8of3.bmp and rle8of4.bmp...

Buffer overflow

Buffer overflow in IrfanView 3.99 allows remote attackers to execute arbitrary code via a crafted animated cursor ANI file...

CVE-2007-1867

Buffer overflow in IrfanView 3.99 allows remote attackers to execute arbitrary code via a crafted animated cursor ANI file...

irfanview-ani.txt

/ IrfanView 3.99 .ANI File Buffer Overflow IrfanView is vulnerable to a buffer overflow when opening a crafted .ani file. The overflow occurs while it is creating a snapshot of the file. This exploit launches calc.exe. Tested against Win XP SP2 FR. Have Fun! Coded and discovered by Marsu Note: th...

IrfanView 3.99 - .ani Local Buffer Overflow (1)

IrfanView 3.99 - .ani Local Buffer Overflow 1 / IrfanView 3.99 .ANI File Buffer Overflow IrfanView is vulnerable to a buffer overflow when opening a crafted .ani file. The overflow occurs while it is creating a snapshot of the file. This exploit launches calc.exe. Tested against Win XP SP2 FR. Ha...

Code injection

IrfanView 3.99 allows remote attackers to cause a denial of service application crash via a malformed WMF file...

CVE-2007-1245

CVE-2007-1245 affects IrfanView 3.99, where a malformed WMF file can trigger a denial of service (application crash). The root cause is inputs in WMF parsing leading to instability. Exploitation status is not described beyond the DoS impact. The provided documents do not specify a patch or versio...