RHEL 6 : java-1.8.0-openjdk (RHSA-2016:0050)

The remote Redhat Enterprise Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2016:0050 advisory. - TLS 1.2 Transcipt Collision attacks against MD5 in key exchange protocol SLOTH CVE-2015-7575 - OpenJDK: URL deserialization inconsistencie...

OpenJDK: incorrect boundary check in JPEG decoder (AWT, 8139017)

An out-of-bounds write flaw was found in the JPEG image format decoder in the AWT component in OpenJDK. A specially crafted JPEG image could cause a Java application to crash or, possibly execute arbitrary code. An untrusted Java application or applet could use this flaw to bypass Java sandbox...

OpenJDK: incorrect boundary check in JPEG decoder (AWT, 8139017)

An out-of-bounds write flaw was found in the JPEG image format decoder in the AWT component in OpenJDK. A specially crafted JPEG image could cause a Java application to crash or, possibly execute arbitrary code. An untrusted Java application or applet could use this flaw to bypass Java sandbox...

DEBIAN-CVE-2015-1779

The VNC websocket frame decoder in QEMU allows remote attackers to cause a denial of service memory and CPU consumption via a large 1 websocket payload or 2 HTTP headers section...

CVE-2015-1779

The VNC websocket frame decoder in QEMU allows remote attackers to cause a denial of service memory and CPU consumption via a large 1 websocket payload or 2 HTTP headers section...

Samsung LibQjpeg Remote Memory Corruption Vulnerability (CNVD-2016-00039)

Samsung LibQjpeg is an image decoder from Samsung South Korea for use in smartphones. A remote memory corruption vulnerability exists in Samsung LibQjpeg. An attacker could exploit the vulnerability to execute arbitrary code in the context of an affected application run by a user, which could als...

Out-of-bounds

The ffdwtdecode function in libavcodec/jpeg2000dwt.c in FFmpeg before 2.8.4 does not validate the number of decomposition levels before proceeding with Discrete Wavelet Transform decoding, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have...

Base64 Decoder 1.1.2 - Overwrite (SEH) (PoC)

Base64 Decoder 1.1.2 - Overwrite SEH PoC Exploit: b64dec SEH OverWrite. Date: 12/18/2015 Exploit Author: UnN0n Vendor: Tim Rohlfs Software Link: http://4mhz.de/b64dec.html Version: 1.1.2 Tested on: Windows 7 x6464bit Dump SEH chain of thread 00000EC0 Address SE handler 024CFC50 b64dec.00458140...

Base64 Decoder 1.1.2 - Overwrite (SEH) (PoC)

Exploit for windows platform in category dos / poc Exploit: b64dec SEH OverWrite. Date: 12/18/2015 Exploit Author: UnN0n Vendor: Tim Rohlfs Software Link: http://4mhz.de/b64dec.html Version: 1.1.2 Tested on: Windows 7 x6464bit Dump SEH chain of thread 00000EC0 Address SE handler 024CFC50...

Base64 Decoder 1.1.2 - Overwrite (SEH) (PoC)

Exploit: b64dec SEH OverWrite. Date: 12/18/2015 Exploit Author: UnN0n Vendor: Tim Rohlfs Software Link: http://4mhz.de/b64dec.html Version: 1.1.2 Tested on: Windows 7 x6464bit Dump SEH chain of thread 00000EC0 Address SE handler 024CFC50 b64dec.00458140 024CFC5C b64dec.004581B3 024CFF28...

Mozilla Firefox Denial of Service Vulnerability (CNVD-2015-08326)

Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the United States. A security vulnerability exists in the gdk-pixbuf configuration of Mozilla Firefox versions prior to 43.0 on the Linux GNOME platform, which stems from the program's failure to properly enable...

Mozilla Firefox Denial of Service Vulnerability (CNVD-2015-08325)

Mozilla Firefox is an open source web browser developed by the Mozilla Foundation in the United States. A security vulnerability exists in the gdk-pixbuf configuration of Mozilla Firefox versions prior to 43.0 on the Linux GNOME platform, which stems from the program failing to properly enable th...

Libnsbmp 0.1.2 Heap Overflow / Out-Of-Bounds Read Exploit

Libnsbmp version 0.1.2 suffers from heap overflow and out-of-bounds read vulnerabilities. Overview ======== Libnsbmp1 is a decoding library for BMP and ICO files. It is primarily developed and used as part of the NetSurf project. As of version 0.1.2, libnsbmp is vulnerable to a heap overflow...

CVE-2015-7216

The gdk-pixbuf configuration in Mozilla Firefox before 43.0 on Linux GNOME platforms incorrectly enables the JasPer decoder, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted JPEG 2000 image...

Heap overflow

The gdk-pixbuf configuration in Mozilla Firefox before 43.0 on Linux GNOME platforms incorrectly enables the TGA decoder, which allows remote attackers to cause a denial of service heap-based buffer overflow via a crafted Truevision TGA image...

Code injection

The gdk-pixbuf configuration in Mozilla Firefox before 43.0 on Linux GNOME platforms incorrectly enables the JasPer decoder, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted JPEG 2000 image...

CVE-2015-7216

Mozilla Firefox before 43.0 on Linux GNOME platforms is affected by CVE-2015-7216 due to gdk-pixbuf configuration that incorrectly enables the JasPer JPEG-2000 decoder. A crafted JPEG 2000 image can cause a denial of service and possibly other impact. The vulnerability is tied to the 43.x Firefox...

CVE-2015-7216

The gdk-pixbuf configuration in Mozilla Firefox before 43.0 on Linux GNOME platforms incorrectly enables the JasPer decoder, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted JPEG 2000 image...

CVE-2015-7216

The gdk-pixbuf configuration in Mozilla Firefox before 43.0 on Linux GNOME platforms incorrectly enables the JasPer decoder, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted JPEG 2000 image...

UBUNTU-CVE-2015-7216

The gdk-pixbuf configuration in Mozilla Firefox before 43.0 on Linux GNOME platforms incorrectly enables the JasPer decoder, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted JPEG 2000 image...