Microsoft Graphics Filters TIFF Image Converter Heap Overflow (MS10-105; CVE-2010-3947)

Tagged Image File Format TIFF is a container format for storing images, including photographs and line art. A remote code execution vulnerability has been discovered in the way that Microsoft Office parses specially crafted TIFF image files. The vulnerability is due to an error in Microsoft Offic...

Microsoft Graphics Filters FlashPix Converter Heap Corruption (MS10-105; CVE-2010-3952)

A remote code execution vulnerability has been discovered in the way that Microsoft Office parses specially crafted FlashPix image files. FlashPix is a bitmapped computer graphics file format where the image is saved in more than one resolution. The vulnerability is due to an error in Microsoft...

PT-2010-3444 · Apple · Ios

Name of the Vulnerable Software and Affected Versions: Apple iOS versions prior to 4.1 Description: The issue allows remote attackers to execute arbitrary code or cause a denial of service, resulting in memory corruption and application crash, via a crafted TIFF file. Recommendations: For version...

GraphicsMagick: Integer overflow in the routine creating X11 images

Integer overflow in the XMakeImage function in magick/xwindow.c in ImageMagick 6.5.2-8, and GraphicsMagick, allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted TIFF file, which triggers a buffer overflow. NOTE: some of these details are...

libtiff tiffdump integer overflow

Integer overflow in the ReadDirectory function in tiffdump.c in tiffdump in LibTIFF before 3.9.5 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted TIFF file containing a directory data structure with many directory entri...

PG Social Networking - Arbitrary File Upload

PG Social Networking - Arbitrary File Upload ============================================================== PG Social Networking --Shell upload Vulnerabilty ============================================================== Name : PG Social Networking --Shell upload Vulnerabilty Date : july 9,2010...

PG Social Networking - Arbitrary File Upload

============================================================== PG Social Networking --Shell upload Vulnerabilty ============================================================== Name : PG Social Networking --Shell upload Vulnerabilty Date : july 9,2010 Critical Level :VERY HIGH vendor URL...

PG Social Networking Shell upload Vulnerabilty

Exploit for php platform in category web applications ============================================== PG Social Networking Shell upload Vulnerabilty ============================================== Name : PG Social Networking --Shell upload Vulnerabilty Critical Level :VERY HIGH vendor URL...

DEBIAN-CVE-2010-2597

The TIFFVStripSize function in tifstrip.c in LibTIFF 3.9.0 and 3.9.2 makes incorrect calls to the TIFFGetField function, which allows remote attackers to cause a denial of service application crash via a crafted TIFF image, related to "downsampled OJPEG input" and possibly related to a compiler...

MyImages Image file manager => upload shell

Exploit for php platform in category web applications =========================================== MyImages Image file manager = upload shell =========================================== + Date: 02/07/2010 + Author: MeGo + Tested ON :windows xP + MY Team : Team Hacker Egypt + CategorY : Webapps/0da...

[SECURITY] Fedora 13 Update: libtiff-3.9.4-1.fc13

The libtiff package contains a library of functions for manipulating TIFF Tagged Image File Format image format files. TIFF is a widely used file format for bitmapped images. TIFF files usually end in the .tif extension and they are often quite large. The libtiff package should be installed if yo...

DEBIAN-CVE-2010-2065

Integer overflow in the TIFFroundup macro in LibTIFF before 3.9.3 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted TIFF file that triggers a buffer overflow...

CVE-2010-1450

Multiple buffer overflows in the RLE decoder in the rgbimg module in Python 2.5 allow remote attackers to have an unspecified impact via an image file containing crafted data that triggers improper processing within the 1 longimagedata or 2 expandrow function...

CVE-2010-1450

Multiple buffer overflows in the RLE decoder in the rgbimg module in Python 2.5 allow remote attackers to have an unspecified impact via an image file containing crafted data that triggers improper processing within the 1 longimagedata or 2 expandrow function...

CVE-2010-1450

Multiple buffer overflows in the RLE decoder in the rgbimg module in Python 2.5 allow remote attackers to have an unspecified impact via an image file containing crafted data that triggers improper processing within the 1 longimagedata or 2 expandrow function...

PSF-2010-3 rgbimg and imageop overflows

Multiple buffer overflows in the RLE decoder in the rgbimg module in Python 2.5 allow remote attackers to have an unspecified impact via an image file containing crafted data that triggers improper processing within the 1 longimagedata or 2 expandrow function...

CVE-2009-3678

Integer overflow in cdd.dll in the Canonical Display Driver CDD in Microsoft Windows Server 2008 R2 and Windows 7 on 64-bit platforms, when the Windows Aero theme is installed, allows context-dependent attackers to cause a denial of service reboot or possibly execute arbitrary code via a crafted...

CVE-2009-3678

CVE-2009-3678 describes an unauthenticated remote code-execution vulnerability in the Canonical Display Driver (cdd.dll) for 64-bit Windows 7/Windows Server 2008 R2 when the Windows Aero theme is enabled. The root cause is improper parsing of data copied from user-mode to kernel-mode in the Canon...

CVE-2010-0992

Multiple cross-site request forgery CSRF vulnerabilities in Pulse CMS Basic 1.2.2 and 1.2.3, and possibly Pulse Pro before 1.3.2, allow remote attackers to hijack the authentication of users for requests that 1 upload image files, 2 delete image files, or 3 create blocks...

Microsoft Color Management Memory Allocation Buffer Overflow (MS08-046; CVE-2008-2245)

A buffer overflow vulnerability exists in Microsoft Color Management System. The vulnerability is due to a boundary error in the Microsoft Color Management System MSCMS module of the Microsoft Image Color Management ICM component. Remote unauthenticated attackers could exploit this vulnerability ...