CVE-2005-1793

User32.DLL in Microsoft Windows 98SE, and possibly other operating systems, allows local and remote attackers to cause a denial of service crash via an icon .ico bitmap file with large width and height values...

CVE-2005-1793

User32.DLL in Microsoft Windows 98SE, and possibly other operating systems, allows local and remote attackers to cause a denial of service crash via an icon .ico bitmap file with large width and height values...

CVE-2005-1793

CVE-2005-1793 affects Microsoft Windows 98SE (and possibly other operating systems) via User32.DLL. A crafted icon (.ico) bitmap file with unusually large width and height values can cause a denial of service (crash). The vulnerability is described as allowing local and remote DoS; CVSS 2.0 base ...

libxpm buffer overflow

scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmapunit value that leads to a buffer overflow...

CVE-2005-0215

Mozilla 1.6 and possibly other versions allows remote attackers to cause a denial of service application crash via a XBM X BitMap file with a large 1 height or 2 width value...

DEBIAN-CVE-2005-0891

Double free vulnerability in gtk 2 gtk2 before 2.2.4 allows remote attackers to cause a denial of service crash via a crafted BMP image...

PT-2005-2058 · Freebsd · Freebsd

Name of the Vulnerable Software and Affected Versions: FreeBSD versions 5.x through 5.4 on AMD64 Description: The issue allows local users to bypass intended access restrictions, potentially causing a denial of service, obtaining sensitive information, and possibly gaining privileges due to the...

security flaw

Double free vulnerability in gtk 2 gtk2 before 2.2.4 allows remote attackers to cause a denial of service crash via a crafted BMP image...

security flaw

Double free vulnerability in gtk 2 gtk2 before 2.2.4 allows remote attackers to cause a denial of service crash via a crafted BMP image...

libxpm buffer overflow

scan.c for LibXPM may allow attackers to execute arbitrary code via a negative bitmapunit value that leads to a buffer overflow...

Multiple applications fd_set structure bitmap array index overflow

Absence of control for large number of open file descriptors or sockets FDSETSIZE allow to write arbitrary memory...

CVE-2004-1309

Heap-based buffer overflow in the demuxopenbmp function in demuxbmp.c for Unix MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a bitmap BMP file containing a large biClrUsed field...

CVE-2004-1309

Heap-based buffer overflow in the demuxopenbmp function in demuxbmp.c for Unix MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a bitmap BMP file containing a large biClrUsed field...

DEBIAN-CVE-2004-1309

Heap-based buffer overflow in the demuxopenbmp function in demuxbmp.c for Unix MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a bitmap BMP file containing a large biClrUsed field...

DEBIAN-CVE-2004-0802

Buffer overflow in the BMP loader in imlib2 before 1.1.2 allows remote attackers to execute arbitrary code via a specially-crafted BMP image, a different vulnerability than CVE-2004-0817...

CVE-2004-0904

Integer overflow in the bitmap BMP decoder for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allow remote attackers to execute arbitrary code via wide bitmap files that trigger heap-based buffer overflows...

Windows LoadImage integer overflow

Integer overflow on bitmap size calculation...

CVE-2004-1309

Heap-based buffer overflow in the demuxopenbmp function in demuxbmp.c for Unix MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a bitmap BMP file containing a large biClrUsed field...

CVE-2004-1309

Heap-based buffer overflow in the demuxopenbmp function in demuxbmp.c for Unix MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a bitmap BMP file containing a large biClrUsed field...

fd_set -- bitmap index overflow in multiple applications

3APA3A reports: If programmer fails to check socket number before using select or fdset macros, it's possible to overwrite memory behind fdset structure. Very few select based application actually check FDSETSIZE value. ... Depending on vulnerable application it's possible to overwrite portions o...