QlikView - '.qvw' File Remote Integer Overflow

source: https://www.securityfocus.com/bid/58463/info QlikView is prone to a remote integer-overflow vulnerability. Successful attacks will allow attackers to execute arbitrary code within the context of the application. Failed exploit attempts will result in a denial-of-service condition. QlikVie...

Microsoft Visio Viewer VSD File Format CVE-2013-0079 Remote Code Execution Vulnerability

Description Microsoft Visio Viewer is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will result in a denial-of-service condition. Technologies Affected...

CVE-2013-2495

The iffreadheader function in iff.c in libavformat in FFmpeg through 1.1.3 does not properly handle data sizes for Interchange File Format IFF data during operations involving a CMAP chunk or a video codec, which allows remote attackers to cause a denial of service integer overflow, out-of-bounds...

CVE-2013-2495

The iffreadheader function in iff.c in libavformat in FFmpeg through 1.1.3 does not properly handle data sizes for Interchange File Format IFF data during operations involving a CMAP chunk or a video codec, which allows remote attackers to cause a denial of service integer overflow, out-of-bounds...

VMware OVF Tools - Format String (Metasploit) (2)

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit web site for more information on licensing and terms of use. http://metasploit.com/ require 'msf/core' class Metasploit3 'VMWare OVF Tools Format String...

[SECURITY] Fedora 16 Update: gdal-1.7.3-15.fc16

The GDAL library provides support to handle multiple GIS file formats...

[SECURITY] Fedora 16 Update: inkscape-0.48.4-1.fc16

Inkscape is a vector graphics editor, with capabilities similar to Illustrator, CorelDraw, or Xara X, using the W3C standard Scalable Vector Graphics SVG file format. It is therefore a very useful tool for web designers and as an interchange format for desktop publishing. Inkscape supports many...

IDA Pro 6.3 - Crash (PoC)

/ IDA Pro 6.3 crash due an internal error ELF anti-debugging/reversing patcher Published @ IOActive Labs Research blog: http://blog.ioactive.com/2012/12/striking-back-gdb-and-ida-debuggers.html - nitr0us http://twitter.com/nitr0usmx Tested under: IDA Pro Starter License 6.3.120531 Mac OS X IDA Pr...

IDA Pro 6.3 - Crash (PoC)

IDA Pro 6.3 - Crash PoC / IDA Pro 6.3 crash due an internal error ELF anti-debugging/reversing patcher Published @ IOActive Labs Research blog: http://blog.ioactive.com/2012/12/striking-back-gdb-and-ida-debuggers.html - nitr0us http://twitter.com/nitr0usmx Tested under: IDA Pro Starter License...

Graduation thesis system upload vulnerability-vulnerability warning-the black bar safety net

Vulnerability in fileload directory of the FileUpload. asp file, with no fear of the formation of the upload Look at the code | 0 1 | var fu = new FileUpload"uploadForm","idFile", Limit: 3, ExtIn: "rar","doc","xls", RanName: true, ---|--- 0 2 | onIniFile: functionfile file. value ? file. style...

[SECURITY] Fedora 18 Update: optipng-0.7.4-1.fc18

OptiPNG is a PNG optimizer that recompresses image files to a smaller size, without losing any information. This program also converts external formats BMP, GIF, PNM and TIFF to optimized PNG, and performs PNG integrity checks and corrections...

libTIFF: Multiple vulnerabilities

Background libTIFF provides support for reading and manipulating TIFF Tagged Image File Format images. Description Multiple vulnerabilities have been discovered in libTIFF. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a...

RedHat Update for libexif RHSA-2012:1255-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for libexif CESA-2012:1255 centos5

Check for the Version of libexif OpenVAS Vulnerability Test CentOS Update for libexif CESA-2012:1255 centos5 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under...

RedHat Update for libexif RHSA-2012:1255-01

Check for the Version of libexif OpenVAS Vulnerability Test RedHat Update for libexif RHSA-2012:1255-01 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

jakarta: JVM destabilization due to memory exhaustion when processing CDF/CFBF files

The UnhandledDataStructure function in hwpf/model/UnhandledDataStructure.java in Apache POI 3.8 and earlier allows remote attackers to cause a denial of service OutOfMemoryError exception and possibly JVM destabilization via a crafted length value in a Channel Definition Format CDF or Compound Fi...

Heap overflow

Heap-based buffer overflow in the KiSS CEL file format plug-in in GIMP 2.8.x and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted KiSS palette file, which triggers an "invalid free."...

CVE-2012-3403

Heap-based buffer overflow in the KiSS CEL file format plug-in in GIMP 2.8.x and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted KiSS palette file, which triggers an "invalid free."...

CentOS 6 : gimp (CESA-2012:1180)

Updated gimp packages that fix three security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...

PT-2012-1071 · Gnu +3 · Gimp +3

Name of the Vulnerable Software and Affected Versions: GIMP versions 2.6.9 and earlier GIMP versions 2.8.x and earlier Description: The issue is related to multiple vulnerabilities in the GIMP package, which can lead to a disruption of confidentiality, integrity, and availability of protected...