33 matches found
USN-4497-1 OpenJPEG vulnerabilities
It was discovered that OpenJPEG incorrectly handled certain image files. A remote attacker could possibly use this issue to cause a denial of service. CVE-2016-9112 It was discovered that OpenJPEG did not properly handle certain input. If OpenJPEG were supplied with specially crafted input, it...
Qt GUI: Buffer overflow
Background The GUI module and platform plugins for the Qt5 framework. Description It was discovered that Qt GUI’s XBM parser did not properly handle X BitMap files. Impact Please review the referenced CVE identifiers for details. Workaround There is no known workaround at this time. Resolution Al...
CVE-2020-6350
SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated BMP file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...
CVE-2019-2251
If a bitmap file is loaded from any un-authenticated source, there is a possibility that the bitmap can potentially cause stack buffer overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...
Memory Corruption Vulnerability in NexusImage Processing of BMP Images
NexusImage is an image viewer. NexusImage suffers from a memory corruption vulnerability when processing BMP images, which can be exploited by an attacker to crash the program by constructing malformed BMP images...
Micro Focus SUSE Linux Enterprise libqt5-qtbase Denial of Service Vulnerability
Micro Focus SUSE Linux Enterprise is a suite of enterprise Linux operating systems from Micro Focus in the UK. libqt5-qtbase is one of the libraries used to work with strings, XML, and more. A denial of service vulnerability exists in QBmpHandler in libqt5-qtbase in Micro Focus SUSE Linux...
Memory Corruption Vulnerability in ApowerPDF Processing of BMP Files
ApowerPDF is a PDF editor that can be used to convert, view, create PDF files and provide users with a one-stop PDF solution. A memory corruption vulnerability exists in ApowerPDF's handling of BMP files. An attacker can cause the program to crash by constructing malformed BMP files...
Memory Corruption Vulnerability in PhotoLine's Handling of GIF Images
PhotoLine is a professional image editing software from Germany. The software suffers from a memory corruption vulnerability when dealing with the GIF format, which can be exploited by an attacker to construct malformed BMP files that can crash the program and cause a denial of service condition...
CVE-2008-0420
modules/libpr0n/decoders/bmp/nsBMPDecoder.cpp in Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and SeaMonkey before 1.1.8 does not properly perform certain calculations related to the mColors table, which allows remote attackers to read portions of memory uninitialized via a craft...
Microsoft Windows Media Player畸形位图文件处理堆溢出漏洞(MS06-005)
Microsoft Windows Media Player是一款非常流行的媒体播放器。 Microsoft Windows Media Player在处理畸形的位图文件时存在漏洞,攻击者可能利用此漏洞在用户机器上执行任意指令。 Windows Media Player可以播放位图格式文件(如.bmp文件)并解码bmp文件,但没有正确地处理声明大小为0的bmp文件。在这种情况下,WMP会分配大小为0的堆,但实际上会以实际文件长度拷贝数据到这个堆,因此声明大小为0的bmp文件会导致溢出。攻击者可以通过诱骗用户使用Windows Media Player打开特制的位图文件导致执行任意指令。...
DEBIAN-CVE-2004-1309
Heap-based buffer overflow in the demuxopenbmp function in demuxbmp.c for Unix MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a bitmap BMP file containing a large biClrUsed field...
security flaw
Multiple heap-based buffer overflows in the imlib BMP image handler allow remote attackers to execute arbitrary code via a crafted BMP file...
Microsoft Internet Explorer contains an integer overflow in the processing of bitmap files
Overview A vulnerability in Microsoft Internet Explorer could allow a remote attacker to execute arbitrary code on a vulnerable system. Description Microsoft Internet Explorer IE is a web browser. An integer overflow vulnerability has been discovered in the way that Internet Explorer processes...