PT-2008-2681 · Microsoft · Windows +1

Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions 2000 SP4 through Server 2008 Description: A heap-based buffer overflow in the CreateDIBPatternBrushPt function in GDI allows remote attackers to execute arbitrary code via an EMF or WMF image file with a malformed...

Heap overflow

Heap-based buffer overflow in Clip opcode parsing in Apple QuickTime before 7.4.5 on Windows allows remote attackers to execute arbitrary code via a crafted PICT image file...

Heap overflow

Heap-based buffer overflow in quickTime.qts in Apple QuickTime before 7.4.5 on Windows allows remote attackers to execute arbitrary code via a crafted PICT image file with Kodak encoding, related to error checking and error messages...

CVE-2008-1020

Heap-based buffer overflow in quickTime.qts in Apple QuickTime before 7.4.5 on Windows allows remote attackers to execute arbitrary code via a crafted PICT image file with Kodak encoding, related to error checking and error messages...

CVE-2008-1019

Heap-based buffer overflow in quickTime.qts in Apple QuickTime before 7.4.5 allows remote attackers to execute arbitrary code via a crafted PICT image file, related to an improperly terminated memory copy loop...

CVE-2008-1023

Heap-based buffer overflow in Clip opcode parsing in Apple QuickTime before 7.4.5 on Windows allows remote attackers to execute arbitrary code via a crafted PICT image file...

CVE-2008-1023

CVE-2008-1023 affects Apple QuickTime on Windows prior to 7.4.5. It is a heap-based buffer overflow in Clip opcode parsing triggered by a crafted PICT image file, enabling remote code execution. Remediation mentioned is upgrading to QuickTime 7.4.5 or applying the vendor patch (HT1241). The provi...

CVE-2008-1023

Heap-based buffer overflow in Clip opcode parsing in Apple QuickTime before 7.4.5 on Windows allows remote attackers to execute arbitrary code via a crafted PICT image file...

QuickTime < 7.4.5 Multiple Vulnerabilities

Binary data 4458.prm...

Debian DSA-1533-2 : exiftags - insufficient input sanitizing

Christian Schmid and Meder Kydyraliev Google Security discovered a number of vulnerabilities in exiftags, a utility for extracting EXIF metadata from JPEG images. The Common Vulnerabilities and Exposures project identified the following three problems : - CVE-2007-6354 Inadequate EXIF property...

SDL_Image 1.2.6 and prior GIF handling buffer overflow

Name : SDLImage 1.2.6 and prior GIF handling buffer overflow Type : Remote DoS / Code Execution ? Impact : Low / Medium ? Credits : Gynvael Coldwind / Team Vexillium Discovered: 2007-12-17 Published : 2008-01-23 Brief SDLImage is an open source library providing image file handling functionality...

Debian Security Advisory DSA 714-1 (kdelibs)

The remote host is missing an update to kdelibs announced via advisory DSA 714-1. OpenVAS Vulnerability Test $Id: deb7141.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 714-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

onecms-sql.txt

WwW.BugReport.ir AmnPardaz Security Research Team Title: OneCMS Vulnerabilities Vendor: http://www.insanevisions.com Bugs: SQL Injection Authentication bypass , Arbitrary file upload! Vulnerable Version: 2.4 prior versions also may be affected Exploitation: Remote with browser Fix Available: No! ...

GLSA-200712-15 : libexif: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200712-15 libexif: Multiple vulnerabilities Meder Kydyraliev Google Security discovered an integer overflow vulnerability in the exifdataloaddatathumbnail function leading to a memory corruption CVE-2007-6352 and an infinite...

CentOS 4 : libexif (CESA-2007:1166)

Updated libexif packages that fix a security issue are now available for Red Hat Enterprise Linux 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The libexif packages contain the Exif library. Exif is an image file format specification that...

libexif security update

CentOS Errata and Security Advisory CESA-2007:1165 Updated libexif packages that fix several security issues are now available for Red Hat Enterprise Linux 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. The libexif packages contain the Exif...

CVE-2007-6351

libexif 0.6.16 and earlier allows context-dependent attackers to cause a denial of service infinite recursion via an image file with crafted EXIF tags, possibly involving the exifloaderwrite function in exifloader.c...

libexif infinite recursion flaw (DoS)

libexif 0.6.16 and earlier allows context-dependent attackers to cause a denial of service infinite recursion via an image file with crafted EXIF tags, possibly involving the exifloaderwrite function in exifloader.c...

Design/Logic Flaw

Free Lossless Audio Codec FLAC libFLAC before 1.2.1 allows user-assisted remote attackers to force a client to download arbitrary files via the MIME-Type URL flag -- for the FLAC image file in a crafted .FLAC file...

CVE-2007-4985

ImageMagick before 6.3.5-9 allows context-dependent attackers to cause a denial of service via a crafted image file that triggers 1 an infinite loop in the ReadDCMImage function, related to ReadBlobByte function calls; or 2 an infinite loop in the ReadXCFImage function, related to ReadBlobMSBLong...