Lucene search
K

2252 matches found

Prion
Prion
added 2008/05/12 10:20 p.m.12 views

Design/Logic Flaw

Multiple unspecified vulnerabilities in the JPEG GDI+ and GIF image processing in Microsoft Windows CE 5.0 allow remote attackers to execute arbitrary code via crafted 1 JPEG and 2 GIF images...

9.3CVSS8.3AI score0.18025EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2008/05/12 10:0 p.m.38 views

CVE-2008-2160

CVE-2008-2160 affects Microsoft Windows CE 5.0, specifically the JPEG (GDI+) and GIF image processing components. The vulnerability allows remote code execution via crafted JPEG/GIF images. The provided documents do not include concrete exploit details or a confirmed remediation; one source notes...

9.3CVSS7.7AI score0.18025EPSS
Exploits0References6Affected Software1
Gentoo Linux
Gentoo Linux
added 2008/05/12 12:0 a.m.27 views

Blender: Multiple vulnerabilities

Background Blender is a 3D creation, animation and publishing program. Description Stefan Cornelius Secunia Research reported a boundary error within the imbloadhdr function in in the file source/blender/imbuf/intern/radiancehdr.c when processing RGBE images CVE-2008-1102. Multiple vulnerabilitie...

6.9CVSS7.1AI score0.03885EPSS
Exploits2
Gentoo Linux
Gentoo Linux
added 2008/04/15 12:0 a.m.39 views

libpng: Execution of arbitrary code

Background libpng is a free ANSI C library used to process and manipulate PNG images. Description Tavis Ormandy of the Google Security Team discovered that libpng does not handle zero-length unknown chunks in PNG files correctly, which might lead to memory corruption in applications that call...

7.5CVSS7.9AI score0.05514EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2008/04/11 12:0 a.m.11 views

openSUSE 10 Security Update : opera (opera-5154)

A flaw when processing images could crash opera. Attackers could potentially even exploit that to execute code. This update upgrades opera to version 9.27 to fix the problem. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

5.5AI score
Exploits0
Prion
Prion
added 2008/04/10 7:5 p.m.20 views

Integer overflow

Multiple integer overflows in 1 filter/image-png.c and 2 filter/image-zoom.c in CUPS 1.3 allow attackers to cause a denial of service crash and trigger memory corruption, as demonstrated via a crafted PNG image...

4.3CVSS6.4AI score0.02EPSS
Exploits1References25Affected Software1
Tenable Nessus
Tenable Nessus
added 2008/03/06 12:0 a.m.132 views

Sun Java JRE Multiple Vulnerabilities (233321-233327)

The version of Sun Java Runtime Environment JRE installed on the remote host is affected by one or more security issues : - Two vulnerabilities in the JRE VM may independently allow an untrusted application or applet downloaded from a website to elevate its privileges 233321. - When processing XS...

9.3CVSS6.2AI score0.12501EPSS
Exploits1References8
Core Security
Core Security
added 2008/03/04 12:0 a.m.134 views

Multiple vulnerabilities in Google's Android SDK

Advisory ID Internal CORE-2008-0124 Advisory Information Title: Multiple vulnerabilities in Google's Android SDK Advisory ID: CORE-2008-0124 Advisory URL:https://www.coresecurity.com/core-labs/advisories/advisory-google Date published: 2008-03-04 Date of last update: 2008-03-04 Vendors contacted:...

7.5CVSS8AI score0.05115EPSS
Exploits4
Packet Storm
Packet Storm
added 2008/03/04 12:0 a.m.221 views

Core Security Technologies Advisory 2008.0124

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Core Security Technologies - CoreLabs Advisory http://www.coresecurity.com/corelabs Multiple vulnerabilities in Google's Android SDK Advisory Information Title: Multiple vulnerabilities in Google's Android SDK Advisory ID: CORE-2008-0124 Advisory URL:...

7.5CVSS0.6AI score0.05115EPSS
Exploits4
Check Point Advisories
Check Point Advisories
added 2008/02/12 12:0 a.m.9 views

Internet Explorer Image Processing Memory Corruption (MS08-010; CVE-2008-0078)

Microsoft Internet Explorer is the most widely used Internet browser. The vulnerability is due to a memory corruption error in Microsoft Internet Explorer when handling argument validation, under certain circumstances, in image processing. A remote attacker could exploit this issue by convincing ...

9.3CVSS7.2AI score0.29062EPSS
Exploits1
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.26 views

Debian Security Advisory DSA 729-1 (php4)

The remote host is missing an update to php4 announced via advisory DSA 729-1. OpenVAS Vulnerability Test $Id: deb7291.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 729-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

5CVSS0.4AI score0.02808EPSS
Exploits1
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.16 views

Debian: Security Advisory (DSA-729-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.6AI score0.02808EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.19 views

Debian: Security Advisory (DSA-708-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.6AI score0.02808EPSS
Exploits1References3
CVE
CVE
added 2007/12/20 2:0 a.m.74 views

CVE-2007-6352

CVE-2007-6352 relates to an integer overflow in libexif (versions up to and including 0.6.16) that can be triggered by parsing crafted Exif tags in images, potentially allowing an attacker to execute arbitrary code. The root cause is an overflow in the Exif thumbnail/image tag handling (exif_data...

6.8CVSS7.4AI score0.02727EPSS
Exploits0References34Affected Software1
Tenable Nessus
Tenable Nessus
added 2007/12/13 12:0 a.m.17 views

SuSE 10 Security Update : Qt (ZYPP Patch Number 2187)

Multiple integer overflows have been found in image processing functions within the QT library. These could potentially lead to heap overflows and code execution. CVE-2006-4811 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc...

6.8CVSS5.5AI score0.04146EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2007/11/29 3:22 p.m.4 views

cairo integer overflow

Multiple integer overflows in Cairo before 1.4.12 might allow remote attackers to execute arbitrary code, as demonstrated using a crafted PNG image with large width and height values, which is not properly handled by the readpng function...

6.8CVSS7AI score0.05486EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2007/11/10 12:0 a.m.35 views

Ubuntu 5.10 / 6.06 LTS / 6.10 : imlib2 vulnerabilities (USN-376-1)

M. Joonas Pihlaja discovered that imlib2 did not sufficiently verify the validity of ARGB, JPG, LBM, PNG, PNM, TGA, and TIFF images. If a user were tricked into viewing or processing a specially crafted image with an application that uses imlib2, the flaws could be exploited to execute arbitrary...

5.1CVSS5.8AI score0.04205EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2007/10/17 12:0 a.m.27 views

openSUSE 10 Security Update : qt (qt-2188)

Multiple integer overflows have been found in image processing functions within the QT library. These could potentially lead to heap overflows and code execution. CVE-2006-4811 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extract...

6.8CVSS5.5AI score0.04146EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2007/10/17 12:0 a.m.27 views

openSUSE 10 Security Update : qt3 (qt3-2189)

Multiple integer overflows have been found in image processing functions within the QT library. These could potentially lead to heap overflows and code execution. CVE-2006-4811 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extract...

6.8CVSS5.5AI score0.04146EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2007/09/24 12:0 a.m.230 views

RHEL 4 / 5 : php (RHSA-2007:0890)

The remote Redhat Enterprise Linux 4 / 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2007:0890 advisory. - gd / php-gd ImageCreateFromPng infinite loop caused by truncated PNG CVE-2007-2756 - php chunksplit integer overflow CVE-2007-2872 - p...

7.5CVSS6.7AI score0.08878EPSS
Exploits1References17
Rows per page
Query Builder