FreeBSD : ImageMagick -- SGI Image File heap overflow vulnerability (18e3a5be-81f9-11db-95a2-0012f06707f0)

SecurityFocus reports about ImageMagick : ImageMagick is prone to a remote heap-based buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer. Exploiting this issue allows attackers to...

WinZIP <= 10.0.7245 (FileView ActiveX) Remote Buffer Overflow Expl

Exploit for unknown platform in category remote exploits ===================================================================== WinZIP = 10.0.7245 FileView ActiveX Remote Buffer Overflow Exploit ===================================================================== / WinZip = 10.0.7245 FileView...

WinZip 10.0.7245 - FileView ActiveX Remote Buffer Overflow

/ WinZip - prdelka / incl...

ImageMagick -- SGI Image File heap overflow vulnerability

SecurityFocus reports about ImageMagick: ImageMagick is prone to a remote heap-based buffer-overflow vulnerability because the application fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer. Exploiting this issue allows attackers to execu...

Debian DSA-1200-1 : qt-x11-free - integer overflow

An integer overflow has been found in the pixmap handling routines in the Qt GUI libraries. This could allow an attacker to cause a denial of service and possibly execute arbitrary code by providing a specially crafted image file and inducing the victim to view it in an application based on Qt...

PT-2006-5967 · Isearch · Isearch

Name of the Vulnerable Software and Affected Versions: iSearch version 2.16 Description: The issue concerns remote file inclusion vulnerabilities that could allow remote attackers to execute arbitrary PHP code. This is achieved by providing a URL in the isearch path parameter within various PHP...

CVE-2006-4374

IrfanView 3.98 with plugins allows user-assisted attackers to cause a denial of service application crash via a crafted ANI image file, possibly due to a buffer overflow...

CVE-2006-4231

IrfanView 3.98 with plugins allows remote attackers to cause a denial of service application crash via a crafted CUR image file...

CVE-2006-4231

IrfanView 3.98 with plugins allows remote attackers to cause a denial of service application crash via a crafted CUR image file...

IrfanView 3.98 - &#039;.ANI&#039; Image File Denial of Service

source: https://www.securityfocus.com/bid/19452/info IrfanView is prone to a denial-of-service vulnerability. A remote attacker may crash the application, resulting in denial-of-service conditions to legitimate users. This issue may potentially be exploited to execute arbitrary machine code, but...

ASP backup into a picture of refinement-bug warning-the black bar safety net

For the reader: the script invasion lovers Pre-knowledge: sql injection ASP backup into a picture of refinement Text/figure luckyfeng Pictures and the database backup file into ASP or ASA Trojan is we often use to get WebShell means, however the ASP files back into a map Sheet file, there will al...

Windows Media Player PNG buffer overflow

Added: 06/16/2006 CVE: CVE-2006-0025 BID: 18385 OSVDB: 26430 Background Windows Media Player is an audio and video media player for Windows platforms. Problem A buffer overflow in Windows Media Player allows command execution when a user opens a specially crafted PNG image file. Resolution Apply...

CVE-2006-1453

Stack-based buffer overflow in Apple QuickTime before 7.1 allows remote attackers to execute arbitrary code via a crafted QuickDraw PICT image format file containing malformed font information...

CVE-2006-2277

Multiple Apple Mac OS X 10.4 applications might allow context-dependent attackers to cause a denial of service application crash via a crafted OpenEXR .exr image file, which triggers the crash when opening a folder using Finder, displaying the image in Safari, or using Preview to open the file...

Image file crashes Finder, Safari and other apps

The file http://w148.de/cmertes/nachbarhaus1.exr will crash the Mac OS 10.4 Finder.app when it tries to preview it i.e. when opening the folder containing the file. Safari will crash when opening a html page with an img tag referring to this file. Preview.app and other applications are affected,...

CVE-2006-1942

Mozilla Firefox 1.5.0.2 and possibly other versions before 1.5.0.4, Netscape 8.1, 8.0.4, and 7.2, and K-Meleon 0.9.13 allows user-assisted remote attackers to open local files via a web page with an IMG element containing a SRC attribute with a non-image file:// URL, then tricking the user into...

CVE-2006-1942

Mozilla Firefox 1.5.0.2 and possibly other versions before 1.5.0.4, Netscape 8.1, 8.0.4, and 7.2, and K-Meleon 0.9.13 allows user-assisted remote attackers to open local files via a web page with an IMG element containing a SRC attribute with a non-image file:// URL, then tricking the user into...

CVE-2006-1942

Mozilla Firefox 1.5.0.2 and possibly other versions before 1.5.0.4, Netscape 8.1, 8.0.4, and 7.2, and K-Meleon 0.9.13 allows user-assisted remote attackers to open local files via a web page with an IMG element containing a SRC attribute with a non-image file:// URL, then tricking the user into...

phpBB v 2.0.X upload html .gif &#40; &quot;not 2.0.19&quot; &#41;

/ ,, / / '-./.-' .--' '--. / / /"" SpiderZ ForumZ Security | | | | / / '..' = Autore: SpiderZ = phpBB v 2.0.X upload html .gif "not 2.0.19" = Sito: www.spiderz.tk 1° Registrati al seguente forum 2° entra con i tuoi dati 3° vai su "Profilo" su "Carica avatar da PC:" 4° prepara la tua pagina...

Easy Forum 2.5 - New User Image File HTML Injection

Easy Forum 2.5 - New User Image File HTML Injection source: https://www.securityfocus.com/bid/16958/info Easy Forum is prone to an HTML-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in dynamically generated...