103 matches found
gdk-pixbuf integer overflow vulnerability
gdk-pixbuf is a library used by Gtk. An integer overflow vulnerability exists in versions prior to gdk-pixbuf 2.32.1. Allows remote attackers to trigger a heap-based buffer overflow via a crafted GIF image file to launch a denial of service attack or execute arbitrary code...
The vulnerability of the Foxit Reader text viewer program, which allows a violator to trigger a service failure
The vulnerability of the Foxit Reader text viewer exists due to a memory-related error. Exploiting this vulnerability can allow an attacker to trigger a service failure by using a specially crafted GIF image embedded in a PDF file...
IBM Domino Denial of Service Vulnerability (CNVD-2015-02729)
IBM Domino is a suite of platforms for hosting social business applications. A security vulnerability in IBM Domino's handling of special GIF files allows remote attackers to exploit the vulnerability for denial of service attacks...
Denial of Service Vulnerability in Multiple Foxit Products
Foxit Reader is a Chinese Foxit Foxit software company's a PDF document reader.Enterprise Reader is a customized version of the enterprise.PhantomPDF is a commercial version. A security vulnerability exists in several Foxit products. A remote attacker could exploit this vulnerability to cause a...
DEBIAN-CVE-2014-8547
libavcodec/gifdec.c in FFmpeg before 2.4.2 does not properly compute image heights, which allows remote attackers to cause a denial of service out-of-bounds access or possibly have unspecified other impact via crafted GIF data...
(gif2tiff): GIF LZW decoder missing datasize value check
Multiple buffer overflows in libtiff before 4.0.3 allow remote attackers to cause a denial of service out-of-bounds write via a crafted 1 extension block in a GIF image or 2 GIF raster image to tools/gif2tiff.c or 3 a long filename for a TIFF image to tools/rgb2ycbcr.c. NOTE: vectors 1 and 3 are...
(gif2tiff): possible heap-based buffer overflow in readgifimage()
Heap-based buffer overflow in the readgifimage function in the gif2tiff tool in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted height and width values in a GIF image...
(gif2tiff): GIF LZW decoder missing datasize value check
Multiple buffer overflows in libtiff before 4.0.3 allow remote attackers to cause a denial of service out-of-bounds write via a crafted 1 extension block in a GIF image or 2 GIF raster image to tools/gif2tiff.c or 3 a long filename for a TIFF image to tools/rgb2ycbcr.c. NOTE: vectors 1 and 3 are...
Microsoft DirectShow Remote Code Execution Vulnerability (2845187)
This host is missing a critical security update according to Microsoft Bulletin MS13-056. OpenVAS Vulnerability Test $Id: secpodms13-056.nasl 5339 2017-02-18 16:28:22Z cfi $ Microsoft DirectShow Remote Code Execution Vulnerability 2845187 Authors: Arun Kallavi Copyright: Copyright c 2013 SecPod,...
David Koblas' GIF decoder LZW decoder buffer overflow
The LZW decompressor in the LWZReadByte function in giftoppm.c in the David Koblas GIF decoder in PBMPLUS, as used in the gifreadlzw function in filter/image-gif.c in CUPS before 1.4.7, the LZWReadByte function in plug-ins/common/file-gif-load.c in GIMP 2.6.11 and earlier, the LZWReadByte functio...
RealPlayer: GIF file heap overflow
Heap-based buffer overflow in the CGIFCodec::GetPacketBuffer function in datatype/image/gif/common/gifcodec.cpp in RealNetworks RealPlayer 10; RealPlayer 10.5 6.0.12.1040 through 6.0.12.1741; RealPlayer 11 11.0.0 through 11.0.4; RealPlayer Enterprise; Mac RealPlayer 10, 10.1, and 11.0; Linux...
OpenJDK: PNG and GIF processing buffer overflow vulnerabilities (6804996, 6804997)
Multiple buffer overflows in Java SE Development Kit JDK and Java Runtime Environment JRE 6 Update 12 and earlier allow remote attackers to access files or execute arbitrary code via 1 a crafted PNG image that triggers an integer overflow during memory allocation for display on the splash screen,...
OpenJDK GIF processing buffer overflow vulnerability (6804998)
Buffer overflow in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier; 6 Update 12 and earlier; 1.4.219 and earlier; and 1.3.124 and earlier allows remote attackers to access files or execute arbitrary code via a crafted GIF image, aka CR 6804998...
DEBIAN-CVE-2009-2660
Multiple integer overflows in CamlImages 2.2 might allow context-dependent attackers to execute arbitrary code via images containing large width and height values that trigger a heap-based buffer overflow, related to 1 crafted GIF files gifread.c and 2 crafted JPEG files jpegread.c, a different...
giflib/libunfig: memory corruption via a crafted GIF
libungif library before 4.1.0 allows attackers to corrupt memory and possibly execute arbitrary code via a crafted GIF file that leads to an out-of-bounds write...
giflib/libunfig: NULL pointer dereference crash
libungif library before 4.1.0 allows attackers to cause a denial of service via a crafted GIF file that triggers a null dereference...
OpenJDK: PNG and GIF processing buffer overflow vulnerabilities (6804996, 6804997)
Multiple buffer overflows in Java SE Development Kit JDK and Java Runtime Environment JRE 6 Update 12 and earlier allow remote attackers to access files or execute arbitrary code via 1 a crafted PNG image that triggers an integer overflow during memory allocation for display on the splash screen,...
Cosminexus, Processing Kit for XML and Hitachi Developer's Kit for Java Buffer Overflow Vulnerabilities
Overview Cosminexus, Processing Kit for XML and Hitachi Developer's Kit for Java may suffer from buffer overflow when a Java application handles GIF images with the image-processing APIs. Impact An attacker could execute arbitrary code. Solution Please refer to the 'Vendor Information' section fo...
libgd Denial of service by corrupted GIF images
Array index error in gdgifin.c in the GD Graphics Library libgd before 2.0.35 allows user-assisted remote attackers to cause a denial of service crash and heap corruption via large color index values in crafted image data, which results in a segmentation fault...
tk: GIF handling buffer overflow
Stack-based buffer overflow in the ReadImage function in tkImgGIF.c in Tk Tcl/Tk before 8.5.1 allows remote attackers to execute arbitrary code via a crafted GIF image, a similar issue to CVE-2006-4484...