CVE-2018-9947

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

CVE-2018-1174

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 9.0.0.29935. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...

Foxit Reader and Foxit PhantomPDF Heap Buffer Overflow Vulnerability

Foxit Reader is a PDF document reader from China's Foxit Foxit Software Corporation.Foxit PhantomPDF is a commercial version. A heap buffer overflow vulnerability exists in the parsing of BITMAPINFOHEADER records for BMP files in Foxit Reader versions prior to 9.1 and Foxit PhantomPDF versions...

Simple DirectMedia Layer SDL2_image buffer overflow vulnerability (CNVD-2018-10934 )

Simple DirectMedia Layer is a multi-platform library for accessing low-level hardware and graphics and providing support for games, software, and emulators. sdl2image is a component used in it for parsing and displaying various image file formats. A stack buffer overflow vulnerability exists in t...

Unbreakable Enterprise kernel security update

4.1.12-124.14.2 - scsi: iscsitcp: set BDICAPSTABLEWRITES when data digest enabled Jianchao Wang Orabug: 27726302 - block: fix biowillgap for first bvec with offset Ming Lei Orabug: 27775588 - block: relax check on sg gap Ming Lei Orabug: 27775588 - block: don't optimize for non-cloned bio in...

ALPINE-CVE-2017-14442

An exploitable code execution vulnerability exists in the BMP image rendering functionality of SDL2image-2.0.2. A specially crafted BMP image can cause a stack overflow resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability...

UBUNTU-CVE-2017-12122

An exploitable code execution vulnerability exists in the ILBM image rendering functionality of SDL2image-2.0.2. A specially crafted ILBM image can cause a heap overflow resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability...

UBUNTU-CVE-2017-2905

An exploitable integer overflow exists in the bmp loading functionality of the Blender open-source 3d creation suite version 2.78c. A specially crafted '.bmp' file can cause an integer overflow resulting in a buffer overflow which can allow for code execution under the context of the application...

UBUNTU-CVE-2017-14442

An exploitable code execution vulnerability exists in the BMP image rendering functionality of SDL2image-2.0.2. A specially crafted BMP image can cause a stack overflow resulting in code execution. An attacker can display a specially crafted image to trigger this vulnerability...

Microsoft Windows Kernel (Windows 7 x86) - Local Privilege Escalation (MS16-039) Exploit

Exploit for windows platform in category local exploits include include include include pragma commentlib, "psapi.lib" define POCDEBUG 0 if POCDEBUG == 1 define POCDEBUGBREAK getchar elif POCDEBUG == 2 define POCDEBUGBREAK DebugBreak else define POCDEBUGBREAK endif static HBITMAP hBmpHunted = NUL...

Microsoft Windows Kernel (Windows 7 x86) - Local Privilege Escalation (MS17-017) Exploit

Exploit for windows platform in category local exploits include include include include pragma commentlib, "psapi.lib" define POCDEBUG 0 if POCDEBUG == 1 define POCDEBUGBREAK getchar elif POCDEBUG == 2 define POCDEBUGBREAK DebugBreak else define POCDEBUGBREAK endif CONST LONG maxTimes = 2000; CON...

Memory Corruption Vulnerability in ApowerPDF Processing of BMP Files

ApowerPDF is a PDF editor that can be used to convert, view, create PDF files and provide users with a one-stop PDF solution. A memory corruption vulnerability exists in ApowerPDF's handling of BMP files. An attacker can cause the program to crash by constructing malformed BMP files...

Extreme Office 2017 suffers from a buffer overflow vulnerability

Extreme Office is an independently controlled office learning software developed by Beijing Haiteng Times Technology Co. Extreme Office 2017 V1.0.5.0 suffers from a buffer overflow vulnerability when processing BMP images. An attacker can exploit this vulnerability to cause the program to crash b...

QEMU: VGA: reachable assert failure during display update

An assert failure issue was found in the VGA display emulator built into the Quick emulator QEMU. It could occur while updating graphics display, due to miscalculating region for dirty bitmap snapshot in split screen mode. A privileged user/process inside guest could use this flaw to crash the QE...

Memory Corruption Vulnerability in SoftZone Office Handling of BMP Images

SoftZone Office RZoffice is an office software, which is compatible with MS Office and consists of three parts: word processing, spreadsheet and presentation. A memory corruption vulnerability exists in SoftZone Office's handling of BMP images. An attacker can cause the program to crash by...

Samsung Mobile Device Gallery Arbitrary Code Execution Vulnerability

Samsung mobile devices are smart mobile devices released by Samsung in South Korea.Android L, M and N are different versions of the Linux-based open source operating system developed by Google and the Open Handheld Alliance OHA.Gallery is one of the most popular open source photo management...

CVE-2018-1093

The ext4validblockbitmap function in fs/ext4/balloc.c in the Linux kernel through 4.15.15 allows attackers to cause a denial of service out-of-bounds read and system crash via a crafted ext4 image because balloc.c and ialloc.c do not validate bitmap block numbers...

DEBIAN-CVE-2018-1093

The ext4validblockbitmap function in fs/ext4/balloc.c in the Linux kernel through 4.15.15 allows attackers to cause a denial of service out-of-bounds read and system crash via a crafted ext4 image because balloc.c and ialloc.c do not validate bitmap block numbers...

CVE-2018-1093

The ext4validblockbitmap function in fs/ext4/balloc.c in the Linux kernel through 4.15.15 allows attackers to cause a denial of service out-of-bounds read and system crash via a crafted ext4 image because balloc.c and ialloc.c do not validate bitmap block numbers...

Linux kernel 'ext4_valid_block_bitmap' function denial of service vulnerability

Linux kernel is the kernel used by Linux, the open source operating system released by the Linux Foundation in the United States. A security vulnerability exists in the 'ext4validblockbitmap' function in the fs/ext4/balloc.c file in Linux kernel version 4.15.15 and earlier, which stems from the...