IBM TRIRIGA Application Platform Security Bypass Vulnerability

The IBM TRIRIGA Application Platform is a scalable technology platform for deploying IBM TRIRIGA applications. A security bypass vulnerability in IBM TRIRIGA Application Platform versions 3.2.1.x, 3.3.2.2 prior to 3.3.2.3, and 3.4.1.1 prior to 3.4.1.1 allows a remote attacker to bypass intended...

php: heap corruption issue in exif_thumbnail()

A buffer overflow flaw was found in the Exif extension. A specially crafted JPEG or TIFF file could cause a PHP application using the exifthumbnail function to crash or, possibly, execute arbitrary code with the privileges of the user running that PHP application...

Inmatrix-Ltd.-Zoom-Player-8.5-.jpeg

Exploit Title: Inmatrix Ltd. Zoom Player Crafted JPEG File Memory Corruption and Arbitrary Code Execution Exploit. Version: Zoom Player v8.5 Date: 09-1-2013 Author: Debasish Mandal. Blog : http://www.debasish.in/ d =...

Double free

Double free vulnerability in the jasiccattrvaldestroy function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted ICC color profile in a JPEG 2000 image file...

CVE-2014-8137

CVE-2014-8137: JasPer 1.900.1 and earlier contain a double-free in jas_iccattrval_destroy, allowing remote attackers to crash or possibly execute arbitrary code via a crafted ICC color profile in a JPEG 2000 image. Affected: JasPer up to 1.900.1 and earlier. Remediation: upgrade to a newer JasPer...

CVE-2014-8137

Double free vulnerability in the jasiccattrvaldestroy function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted ICC color profile in a JPEG 2000 image file...

CVE-2014-8137

Double free vulnerability in the jasiccattrvaldestroy function in JasPer 1.900.1 and earlier allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted ICC color profile in a JPEG 2000 image file...

2014: A Specious Odyssey

The wonderful and terrifying thing about the security world is that things never stay calm for long. As soon as you think you have a chance to catch your breath, someone breaks something and it’s time to scramble again. In 2014, those small moments of downtime were hard to come by. There was a...

Security Advisory-Multiple Vulnerabilities in Huawei eSpace Desktop Product

Huawei eSpace Desktop products have the following vulnerabilities: 1 The program does not implement comprehensive validity check on the QES file imported into the system, causing the system to exit unexpectedly. Vulnerability ID: HWPSIRT-2014-1151 This vulnerability has been assigned Common...

ECStore开源网店系统任意文件修改漏洞可拿shell

简要描述： 模板编辑中的文件编辑功能，对可编辑的文件限制不严，导致可以修改系统中存在的任意文件 详细说明： 文件编辑功能中选择要修改的文件，这里选图片（模板文件也可以），然后上传图片时将filename参数设置为网站的任意php文件，如/index.php或/config/config.php，将图片内容设置为shell内容。。。。 post数据如下： POST /index.php/shopadmin/index.php?app=site&ctl=adminexplorertheme&act=saveimage HTTP/1.1 Host: shop.xxx.com...

Updated avidemux packages fix security vulnerabilities

A heap-based buffer overflow in the encodeslice function in libavcodec/proresenckostya.c in FFmpeg before 1.2.9 can cause a crash, allowing a malicious image file to cause a denial of service CVE-2014-5271. libavcodec/iff.c in FFmpeg before 1.2.9 allows an attacker to have an unspecified impact v...

Updated graphicsmagick packages fix security vulnerability

GraphicsMagick is vulnerable to an out of bounds read / heap Overflow in the function ReadPCXImage in the file pcx.c. This can be exploited by a crafted image file to cause a denial of service CVE-2014-8355...

Web Clients Suspicious Image File Download

A remote attacker can hide a malicious code within an image file, in an attempt to avoid detection. Successful exploitation could result in the execution of arbitrary code in the security context of the web server...

CVE-2014-8354

The HorizontalFilter function in resize.c in ImageMagick before 6.8.9-9 allows remote attackers to cause a denial of service out-of-bounds read via a crafted image file...

file: mconvert incorrect handling of truncated pascal string size

A buffer overflow flaw was found in the way the File Information fileinfo extension processed certain Pascal strings. A remote attacker able to make a PHP application using fileinfo convert a specially crafted Pascal string provided by an image file could cause that application to crash...

file: mconvert incorrect handling of truncated pascal string size

A buffer overflow flaw was found in the way the File Information fileinfo extension processed certain Pascal strings. A remote attacker able to make a PHP application using fileinfo convert a specially crafted Pascal string provided by an image file could cause that application to crash...

Debian DSA-3039-1 : chromium-browser - security update

Several vulnerabilities were discovered in the chromium web browser. - CVE-2014-3160 Christian Schneider discovered a same origin bypass issue in SVG file resource fetching. - CVE-2014-3162 The Google Chrome development team addressed multiple issues with potential security impact for chromium...

GOM Media Player Denial of Service Vulnerability (Sep 2014) - Windows

GOM Media Player is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2014-3899

Gretech GOM Player 2.2.51.5149 and earlier allows remote attackers to cause a denial of service launch outage via a crafted image file...

Code injection

Gretech GOM Player 2.2.51.5149 and earlier allows remote attackers to cause a denial of service launch outage via a crafted image file...