Microsoft Windows Codecs Library Remote Code Execution Vulnerability

A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited this vulnerability could take control of the affected system. An attacker could then install programs; view, change, or delete data; or...

PT-2020-3734 · Microsoft · Windows Codecs Library

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Codecs Library affected versions not specified Description: A remote code execution issue exists in the way Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploits this issue could...

PT-2020-3705 · Microsoft · Windows Codecs Library

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Codecs Library affected versions not specified Description: A remote code execution issue exists in the way Microsoft Windows Codecs Library handles objects in memory. This could allow an attacker to take control of the...

CVE-2020-7823

DaviewIndy has a Memory corruption vulnerability, triggered when the user opens a malformed image file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution...

Heap overflow

DaviewIndy has a Heap-based overflow vulnerability, triggered when the user opens a malformed image file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution...

Memory corruption

DaviewIndy has a Memory corruption vulnerability, triggered when the user opens a malformed image file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution...

CVE-2020-7823 DaviewIndy Multiple Vulnerabilities

DaviewIndy has a Memory corruption vulnerability, triggered when the user opens a malformed image file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution...

CVE-2020-7823

CVE-2020-7823 affects DaviewIndy/Daview.exe. A memory corruption vulnerability is triggered when a user opens a malformed image file, leading to arbitrary code execution. The NVD entry documents a base CVSSv3.1 score of 7.8 (HIGH) with local attack vector and user interaction required, and CVSSv2...

CVE-2020-7822 DaviewIndy Multiple Vulnerabilities

DaviewIndy has a Heap-based overflow vulnerability, triggered when the user opens a malformed image file that is mishandled by Daview.exe. Attackers could exploit this and arbitrary code execution...

The vulnerability of the Microsoft Windows Codecs Library, which is used for processing media content on Windows operating systems, allows a hacker to execute arbitrary code.

The vulnerability of the Microsoft Windows Codecs Library for processing media content exists due to errors in object handling in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code using a specially created image file...

OpenJDK: Excessive memory usage in ImageIO TIFF plugin (ImageIO, 8233239)

Vulnerability in the Java SE product of Oracle Java SE component: ImageIO. Supported versions that are affected are Java SE: 11.0.7 and 14.0.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of...

The vulnerability of the TIFFWriteDirectorySec function in software for viewing, editing, and converting TIFF files is related to pointer assignment errors, which allows an attacker to cause a service failure.

The vulnerability of the TIFFWriteDirectorySec function in software for viewing, editing, and converting TIFF files is related to the use of a zero pointer. Exploiting this vulnerability allows an attacker to cause service interruptions remotely...

The vulnerability of the exif_process_SOFn function in the EXIF interpreter for the PHP programming language allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the exifprocessSOFn function in the EXIF interpreter for the PHP programming language is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

LibRaw Input Validation Error Vulnerability

LibRaw is a C++ library from the LibRaw team for processing RAW CRW/CR2, NEF, RAF, DNG, andothers format images. An input validation error vulnerability exists in versions prior to LibRaw 0.20-RC1, which stems from the program failing to check the size of thumbnails. A remote attacker could explo...

Microsoft Windows Codecs Library Remote Code Execution Vulnerability

A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited the vulnerability could execute arbitrary code. Exploitation of the vulnerability requires that a program process a specially crafted ima...

Microsoft Windows Codecs Library Remote Code Execution Vulnerability

A remote code execution vulnerability exists in the way that Microsoft Windows Codecs Library handles objects in memory. An attacker who successfully exploited this vulnerability could obtain information to further compromise the user’s system. Exploitation of the vulnerability requires that a...

PT-2020-3000 · Microsoft · Windows Codecs Library

Name of the Vulnerable Software and Affected Versions: Microsoft Windows Codecs Library affected versions not specified Description: A remote code execution issue exists due to errors in handling objects in memory within the Microsoft Windows Codecs Library. This can be exploited by an attacker t...

CVE-2020-13896

The web interface of Maipu MP1800X-50 7.5.3.14R devices allows remote attackers to obtain sensitive information via the form/formDeviceVerGet URI, such as system id, hardware model, hardware version, bootloader version, software version, software image file, compilation time, and system uptime...

The vulnerability of the Apache OpenOffice office software component relates to the occurrence of operations beyond buffer boundaries in memory. This allows attackers to gain unauthorized access to confidential data, cause service failures, or compromise data integrity.

The vulnerability of the Apache OpenOffice office software component relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to confidential data, cause service failures, or compromise data...

CVE-2019-9944

In Open Microscopy Environment OMERO.server 5.0.0 through 5.6.0, the reading of files from imported image filesets may circumvent OMERO permissions restrictions. This occurs because the Bio-Formats feature allows an image file to have embedded pathnames...