Lucene search
K

33 matches found

OSV
OSV
added 2020/09/15 6:30 p.m.5 views

USN-4497-1 OpenJPEG vulnerabilities

It was discovered that OpenJPEG incorrectly handled certain image files. A remote attacker could possibly use this issue to cause a denial of service. CVE-2016-9112 It was discovered that OpenJPEG did not properly handle certain input. If OpenJPEG were supplied with specially crafted input, it...

8.8CVSS6.9AI score0.04932EPSS
Exploits3References8
Gentoo Linux
Gentoo Linux
added 2020/09/13 12:0 a.m.34 views

Qt GUI: Buffer overflow

Background The GUI module and platform plugins for the Qt5 framework. Description It was discovered that Qt GUI’s XBM parser did not properly handle X BitMap files. Impact Please review the referenced CVE identifiers for details. Workaround There is no known workaround at this time. Resolution Al...

5.3CVSS6AI score0.03915EPSS
Exploits0
OSV
OSV
added 2020/09/09 1:15 p.m.4 views

CVE-2020-6350

SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated BMP file received from untrusted sources which results in crashing of the application and becoming temporarily unavailable until the user restarts the application, this is caused due to Improper Input Validation...

4.3CVSS5.8AI score0.01623EPSS
Exploits0References3
NVD
NVD
added 2019/11/21 3:15 p.m.27 views

CVE-2019-2251

If a bitmap file is loaded from any un-authenticated source, there is a possibility that the bitmap can potentially cause stack buffer overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...

7.8CVSS7.8AI score0.00221EPSS
Exploits0References1
CNVD
CNVD
added 2019/01/11 12:0 a.m.1 views

Memory Corruption Vulnerability in NexusImage Processing of BMP Images

NexusImage is an image viewer. NexusImage suffers from a memory corruption vulnerability when processing BMP images, which can be exploited by an attacker to crash the program by constructing malformed BMP images...

7AI score
Exploits0
CNVD
CNVD
added 2018/12/20 12:0 a.m.3 views

Micro Focus SUSE Linux Enterprise libqt5-qtbase Denial of Service Vulnerability

Micro Focus SUSE Linux Enterprise is a suite of enterprise Linux operating systems from Micro Focus in the UK. libqt5-qtbase is one of the libraries used to work with strings, XML, and more. A denial of service vulnerability exists in QBmpHandler in libqt5-qtbase in Micro Focus SUSE Linux...

9.8CVSS6.7AI score0.03382EPSS
Exploits0References1
CNVD
CNVD
added 2018/04/16 12:0 a.m.2 views

Memory Corruption Vulnerability in ApowerPDF Processing of BMP Files

ApowerPDF is a PDF editor that can be used to convert, view, create PDF files and provide users with a one-stop PDF solution. A memory corruption vulnerability exists in ApowerPDF's handling of BMP files. An attacker can cause the program to crash by constructing malformed BMP files...

7AI score
Exploits0
CNVD
CNVD
added 2016/03/30 12:0 a.m.2 views

Memory Corruption Vulnerability in PhotoLine's Handling of GIF Images

PhotoLine is a professional image editing software from Germany. The software suffers from a memory corruption vulnerability when dealing with the GIF format, which can be exploited by an attacker to construct malformed BMP files that can crash the program and cause a denial of service condition...

6.9AI score
Exploits0
NVD
NVD
added 2008/02/12 3:0 a.m.24 views

CVE-2008-0420

modules/libpr0n/decoders/bmp/nsBMPDecoder.cpp in Mozilla Firefox before 2.0.0.12, Thunderbird before 2.0.0.12, and SeaMonkey before 1.1.8 does not properly perform certain calculations related to the mColors table, which allows remote attackers to read portions of memory uninitialized via a craft...

9.3CVSS6.2AI score0.02224EPSS
Exploits1References26
seebug.org
seebug.org
added 2006/10/28 12:0 a.m.21 views

Microsoft Windows Media Player畸形位图文件处理堆溢出漏洞(MS06-005)

Microsoft Windows Media Player是一款非常流行的媒体播放器。 Microsoft Windows Media Player在处理畸形的位图文件时存在漏洞,攻击者可能利用此漏洞在用户机器上执行任意指令。 Windows Media Player可以播放位图格式文件(如.bmp文件)并解码bmp文件,但没有正确地处理声明大小为0的bmp文件。在这种情况下,WMP会分配大小为0的堆,但实际上会以实际文件长度拷贝数据到这个堆,因此声明大小为0的bmp文件会导致溢出。攻击者可以通过诱骗用户使用Windows Media Player打开特制的位图文件导致执行任意指令。...

7.5AI score
Exploits0
OSV
OSV
added 2005/01/10 5:0 a.m.3 views

DEBIAN-CVE-2004-1309

Heap-based buffer overflow in the demuxopenbmp function in demuxbmp.c for Unix MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a bitmap BMP file containing a large biClrUsed field...

10CVSS8.3AI score0.05178EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2004/09/15 3:15 p.m.41 views

security flaw

Multiple heap-based buffer overflows in the imlib BMP image handler allow remote attackers to execute arbitrary code via a crafted BMP file...

7.5CVSS6.4AI score0.04871EPSS
Exploits0References4
CERT
CERT
added 2004/07/30 12:0 a.m.36 views

Microsoft Internet Explorer contains an integer overflow in the processing of bitmap files

Overview A vulnerability in Microsoft Internet Explorer could allow a remote attacker to execute arbitrary code on a vulnerable system. Description Microsoft Internet Explorer IE is a web browser. An integer overflow vulnerability has been discovered in the way that Internet Explorer processes...

7.5CVSS7.6AI score0.38477EPSS
Exploits1References4
Rows per page
Query Builder