Lucene search
K

202 matches found

RedhatCVE
RedhatCVE
added 2017/11/14 7:50 p.m.37 views

CVE-2017-11213

An issue was discovered in Adobe Flash Player 27.0.0.183 and earlier versions. This vulnerability occurs as a result of a computation that reads data that is past the end of the target buffer due to an integer overflow; the computation is part of the abstraction that creates an arbitrarily sized...

10CVSS4AI score0.06518EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2017/09/12 12:0 a.m.44 views

Microsoft Windows Bitmap Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

2.6CVSS5.8AI score0.1404EPSS
Exploits0References1
CNVD
CNVD
added 2017/09/08 12:0 a.m.3 views

ImageMagick coders/xbm.c file denial of service vulnerability

ImageMagick is a set of open source image processing software. The software can read, convert and write images in a variety of formats. A security vulnerability exists in the coders/xbm.c file in ImageMagick, which originates from the program's failure to detect EOF End of File. A remote attacker...

7.1CVSS6.5AI score0.02122EPSS
Exploits1References1
OSV
OSV
added 2017/09/01 12:0 a.m.8 views

UBUNTU-CVE-2017-12693

The ReadBMPImage function in coders/bmp.c in ImageMagick 7.0.6-6 allows remote attackers to cause a denial of service memory consumption via a crafted BMP file...

6.5CVSS7AI score0.0291EPSS
Exploits1References3
OSV
OSV
added 2017/08/30 9:29 a.m.1 views

DEBIAN-CVE-2016-10504

Heap-based buffer overflow vulnerability in the opjmqcbyteout function in mqc.c in OpenJPEG before 2.2.0 allows remote attackers to cause a denial of service application crash via a crafted bmp file...

6.5CVSS7.1AI score0.08253EPSS
Exploits1References1
CNVD
CNVD
added 2017/08/30 12:0 a.m.1 views

OpenJPEG Heap Overflow Vulnerability

OpenJPEG is a C-based open source JPEG 2000 codec . A heap overflow vulnerability exists in the opjcompress component of OpenJPEG, which could be exploited by a remote attacker to conduct a denial of service attack or remotely execute arbitrary code by constructing a specially crafted BMP image...

7.9AI score
Exploits0
CNVD
CNVD
added 2017/06/01 12:0 a.m.3 views

Memory Corruption Vulnerability in Light Developer's Handling of BMP Formats

Stepok Light Developer is a professional photo post-processing tool with features that cover most of the needs of photography enthusiasts. Light Developer handles BMP format memory corruption vulnerability, attackers can use the vulnerability to construct deformed BMP files can lead to program...

7.5AI score
Exploits0
RedHat Linux
RedHat Linux
added 2017/05/09 5:13 p.m.6 views

jasper: missing SIZ marker segment XRsiz and YRsiz fields range check

The jpcdecprocesssiz function in libjasper/jpc/jpcdec.c in JasPer before 1.900.4 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted YRsiz value in a BMP image to the imginfo command...

5.5CVSS7.2AI score0.02167EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2017/05/09 5:13 p.m.5 views

jasper: missing jas_matrix_create() parameter checks

The bmpgetdata function in libjasper/bmp/bmpdec.c in JasPer before 1.900.9 allows remote attackers to cause a denial of service NULL pointer dereference by calling the imginfo command with a crafted BMP image...

5.5CVSS7.2AI score0.01791EPSS
Exploits0References4
CNVD
CNVD
added 2017/03/28 12:0 a.m.5 views

Potrace Buffer Overflow Vulnerability

Potrace is a set of bitmap image processing tools developed by software developer Peter Selinger. The tool provides the ability to add smoothing effects, free scaling of images and other features. A buffer overflow vulnerability exists in the 'bmreadbodybmp' function in the bitmapio.c file in...

7.8CVSS7.2AI score0.01975EPSS
Exploits0References1
OSV
OSV
added 2017/03/26 5:59 a.m.4 views

UBUNTU-CVE-2017-7263

The bmreadbodybmp function in bitmapio.c in Potrace 1.14 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash or possibly have unspecified other impact via a crafted BMP image. NOTE: this vulnerability exists because of an incomplete fix for...

7.8CVSS7.3AI score0.01975EPSS
Exploits0References4
CNVD
CNVD
added 2017/02/22 12:0 a.m.4 views

FastStone MaxView Denial of Service Vulnerability

FastStone MaxView is an image viewer. A denial of service vulnerability exists in FastStone MaxView versions 3.0 and 3.1. An attacker can exploit the vulnerability to cause a denial of service application crash via a misformatted BMP image with a crafted biSize field in the BITMAPINFOHEADER secti...

5.5CVSS6.7AI score0.00719EPSS
Exploits1References1
OSV
OSV
added 2017/02/21 7:59 a.m.4 views

CVE-2017-6078

FastStone MaxView 3.0 and 3.1 allows user-assisted attackers to cause a denial of service application crash via a malformed BMP image with a crafted biSize field in the BITMAPINFOHEADER section...

5.5CVSS5.8AI score0.00719EPSS
Exploits1References1
OSV
OSV
added 2017/02/15 9:59 p.m.3 views

UBUNTU-CVE-2016-7392

Heap-based buffer overflow in the pstoeditsuffixtableinit function in output-pstoedit.c in AutoTrace 0.31.1 allows remote attackers to cause a denial of service out-of-bounds write via a crafted bmp image file...

5.5CVSS7.1AI score0.01903EPSS
Exploits0References3
OSV
OSV
added 2017/02/15 12:0 a.m.3 views

UBUNTU-CVE-2016-8691

The jpcdecprocesssiz function in libjasper/jpc/jpcdec.c in JasPer before 1.900.4 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted XRsiz value in a BMP image to the imginfo command...

5.5CVSS6.8AI score0.02167EPSS
Exploits1References4
OSV
OSV
added 2017/02/15 12:0 a.m.2 views

UBUNTU-CVE-2016-8692

The jpcdecprocesssiz function in libjasper/jpc/jpcdec.c in JasPer before 1.900.4 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted YRsiz value in a BMP image to the imginfo command...

5.5CVSS6.8AI score0.02167EPSS
Exploits1References4
OSV
OSV
added 2017/02/15 12:0 a.m.5 views

UBUNTU-CVE-2016-8693

Double free vulnerability in the memclose function in jasstream.c in JasPer before 1.900.10 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted BMP image to the imginfo command...

7.8CVSS7.5AI score0.03419EPSS
Exploits1References4
Prion
Prion
added 2017/01/31 10:59 p.m.10 views

Heap overflow

Heap-based buffer overflow in the bmreadbodybmp function in bitmapio.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8700, CVE-2016-8701, CVE-2016-8702, and CVE-2016-8703...

6.8CVSS7.8AI score0.01975EPSS
Exploits0References5Affected Software1
Prion
Prion
added 2017/01/31 10:59 p.m.11 views

Heap overflow

Heap-based buffer overflow in the bmreadbodybmp function in bitmapio.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8698, CVE-2016-8699, CVE-2016-8700, CVE-2016-8701, and CVE-2016-8703...

6.8CVSS7.8AI score0.01975EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2017/01/31 10:59 p.m.6 views

UBUNTU-CVE-2016-8698

Heap-based buffer overflow in the bmreadbodybmp function in bitmapio.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability than CVE-2016-8699, CVE-2016-8700, CVE-2016-8701, CVE-2016-8702, and CVE-2016-8703...

7.8CVSS7.4AI score0.01975EPSS
Exploits0References3
Rows per page
Query Builder