2474 matches found
CVE-2007-1943
CVE-2007-1943 affects ACDSee Photo Manager 9.0, where an integer overflow occurs while processing BMP images with large widths. This context-dependent vulnerability can cause a denial of service and potentially allow arbitrary code execution, as demonstrated by crafted BMP files (e.g., w3intof.bm...
CVE-2007-1946
CVE-2007-1946 is described as an integer overflow in Windows Explorer on Windows XP SP1 that could allow denial of service and possibly arbitrary code execution via a crafted BMP image (w4intof.bmp). The connected OpenVAS and FreeBSD VuXML entries reference BMP/image parsing-related overflow issu...
CVE-2007-1946
Integer overflow in Windows Explorer in Microsoft Windows XP SP1 might allow user-assisted remote attackers to cause a denial of service crash and possibly execute arbitrary code via a large width dimension in a crafted BMP image, as demonstrated by w4intof.bmp...
CVE-2007-1943
Integer overflow in ACDSee Photo Manager 9.0 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via large width image sizes in a crafted BMP image, as demonstrated by w3intof.bmp and w4intof.bmp...
CVE-2007-1942
FastStone Image Viewer 2.9 is affected by CVE-2007-1942 due to an integer overflow while processing BMP images. The vulnerability allows a context‑dependent attacker to cause a denial of service and potentially execute arbitrary code, as demonstrated by crafted BMPs wh3intof.bmp and wh4intof.bmp....
CVE-2007-1942
Integer overflow in FastStone Image Viewer 2.9 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via a crafted BMP image, as demonstrated by wh3intof.bmp and wh4intof.bmp...
CVE-2007-1948
Buffer overflow in IrfanView 3.99 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via the 1 xoffset or 2 yoffset RLE command, or 3 large non-RLE encoded blocks in a crafted BMP image, as demonstrated by rle8of3.bmp and rle8of4.bmp...
IrfanView 3.99 - Multiple .BMP Denial of Service Vulnerabilities
IrfanView 3.99 - Multiple .BMP Denial of Service Vulnerabilities // source: https://www.securityfocus.com/bid/23318/info IrfanView is prone to multiple denial-of-service vulnerabilities because the application fails to properly handle malformed BMP image files. Successfully exploiting these issue...
ACDSee 9.0 Photo Manager - Multiple .BMP Denial of Service Vulnerabilities
ACDSee 9.0 Photo Manager - Multiple .BMP Denial of Service Vulnerabilities // source: https://www.securityfocus.com/bid/23317/info ACDSee 9.0 Photo Manager is prone to multiple denial-of-service vulnerabilities because the application fails to properly handle malformed BMP image files. Successful...
IrfanView 3.99 - Multiple .BMP Denial of Service Vulnerabilities
// source: https://www.securityfocus.com/bid/23318/info IrfanView is prone to multiple denial-of-service vulnerabilities because the application fails to properly handle malformed BMP image files. Successfully exploiting these issues allows attackers to crash the affected application. Due to the...
p5-Imager -- possibly exploitable buffer overflow
Imager 0.56 and all earlier versions with BMP support have a security issue when reading compressed 8-bit per pixel BMP files where either a compressed run of data or a literal run of data overflows the scan-line. Such an overflow causes a buffer overflow in a malloc allocated memory buffer,...
USN-445-1: XMMS vulnerabilities
Sven Krewitt of Secunia Research discovered that XMMS did not correctly handle BMP images when loading GUI skins. If a user were tricked into loading a specially crafted skin, a remote attacker could execute arbitrary code with user privileges...
Hacking tricks of using pictures do Trojan applications completely resolution-vulnerability warning-the black bar safety net
What is a BMP web page Trojan. It and last long with the stink of a MIME header vulnerability of Trojans different, MIME Trojans is to put an EXE file with a MIME-encoded as an EMLOUT LOOK mailthe file, put it on a web page using IE and OE coding vulnerability to automatically download and execut...
Hidden in the picture behind the secret-vulnerability warning-the black bar safety net
The image size is not the same, browse pictures when you can't see the slightest problem, whether you think its a picture of a seemingly ordinary BMP picture, but hidden mystery for? Want to Ferret out hidden in the picture behind the secret, then essay with the beginning today of the mysterious...
Use of pictures do Trojan applications completely resolution-vulnerability warning-the black bar safety net
What is a BMP web page Trojan? It and last long with the stink of a MIME header vulnerability of Trojans different,MIME Trojans is to put an EXE file with a MIME-encoded as an EMLOUT LOOK mailthe file,put in on a web page using IE and OE coding vulnerability to automatically download and execute...
Re: Secunia Research: Microsoft Windows Object Packager Dialog Spoofing
I knew about this particular flaw for some time . honestly I found it by accident, like I think the the security researcher from secunia did...or maybe it leaked from where I posted it?!?!?!!! :P. This could be a bit more critical if : 1 a '' not a '/' was placed at the end of the command line...
CentOS 3 / 4 : gtk2 (CESA-2005:344)
Updated gtk2 packages that fix a double free vulnerability are now available. This update has been rated as having important security impact by the Red Hat Security Response Team. The gtk2 package contains the GIMP ToolKit GTK+, a library for creating graphical user interfaces for the X Window...
security flaw
Format string vulnerability in Dia 0.94 allows user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code by triggering errors or warnings, as demonstrated via format string specifiers in a .bmp filename. NOTE: the original exploit was demonstrated through a...
Mandrake Linux Security Advisory : dia (MDKSA-2006:093)
A format string vulnerability in Dia allows user-complicit attackers to cause a denial of service crash and possibly execute arbitrary code by triggering errors or warnings, as demonstrated via format string specifiers in a .bmp filename. NOTE: the original exploit was demonstrated through a...
CVE-2006-2480
Format string vulnerability in Dia 0.94 allows user-assisted attackers to cause a denial of service crash and possibly execute arbitrary code by triggering errors or warnings, as demonstrated via format string specifiers in a .bmp filename. NOTE: the original exploit was demonstrated through a...