821 matches found
CVE-2014-9029
Multiple off-by-one errors in the 1 jpcdeccpsetfromcox and 2 jpcdeccpsetfromrgn functions in jpc/jpcdec.c in JasPer 1.900.1 and earlier allow remote attackers to execute arbitrary code via a crafted jp2 file, which triggers a heap-based buffer overflow...
UBUNTU-CVE-2014-9029
Multiple off-by-one errors in the 1 jpcdeccpsetfromcox and 2 jpcdeccpsetfromrgn functions in jpc/jpcdec.c in JasPer 1.900.1 and earlier allow remote attackers to execute arbitrary code via a crafted jp2 file, which triggers a heap-based buffer overflow...
IrfanView 4.27 - JP2000.dll plugin DoS
No description provided by source. done by BraniX [email protected] www.hackers.org.pl found: 2010.08.18 published: 2010.12.27 tested on: Windows XP SP3 Home Edition App: IrfanView 4.27 DoS, Integer division by zero in module JPEG2000.dll iview32.exe MD5: 58150C1AC5B86C1A6B5E15FE1C3A870D...
Oracle Outside-In JP2 File Parsing Heap Overflow
No description provided by source. Application: Oracle Outside-In JP2 File Parsing Heap Overflow Version: The vulnerabilities are reported in versions 8.3.5 and 8.3.7. Exploitation: Remote code execution Secunia Number: SA49936 PRL: 2012-24 Author: Francis Provencher Protek Research Lab's Website...
Adobe Reader And Acrobat PDF Memory Corruption (CVE-2009-1859)
A buffer overflow vulnerability has been reported in Adobe Reader and Acrobat. The vulnerability is due to insufficient boundary check when parsing the COD tag of an embedded JP2 file. A remote attacker can exploit this weakness by enticing the host to open a specially crafted PDF file with an...
Oracle Outside-In JP2 - File Parsing Heap Overflow
Application: Oracle Outside-In JP2 File Parsing Heap Overflow Version: The vulnerabilities are reported in versions 8.3.5 and 8.3.7. Exploitation: Remote code execution Secunia Number: SA49936 PRL: 2012-24 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/...
Fedora Update for jasper FEDORA-2011-16966
Check for the Version of jasper OpenVAS Vulnerability Test Fedora Update for jasper FEDORA-2011-16966 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the ter...
LuraWave JP2 Browser Plug-In < 2.1.1.11 npjp2.dll Remote Buffer Overflow
The version of the LuraWave JP2 Browser Plug-In installed on the remote Windows host is earlier than 2.1.1.11 and thus reportedly contains a stack-based buffer overflow vulnerability. If an attacker can trick a user on the affected host into viewing a specially crafted HTML document, he can...
LuraWave JP2 ActiveX Control < 2.1.5.11 jp2_x.dll Remote Buffer Overflow
The version of the LuraWave JP2 ActiveX control installed on the remote Windows host reportedly contains a stack-based buffer overflow vulnerability. If an attacker can trick a user on the affected host into viewing a specially crafted HTML document, he can leverage this issue to execute arbitrar...
CVE-2012-1052
CVE-2012-1052 affects IvanView 1.2.15, where a Buffer overflow in handling JPEG2000 (JP2) files with a crafted Quantization Default (QCD) marker segment allows remote code execution. The vulnerability arises from processing of the JP2 marker data, enabling an attacker to run arbitrary code on aff...
CVE-2012-0977
Stack-based buffer overflow in jp2x.dll in LuraWave JP2 ActiveX Control 2.1.5.5 and other versions before 2.1.5.11 allows remote attackers to execute arbitrary code via a JPEG2000 JP2 file with a crafted Quantization Default QCD marker segment...
Stack overflow
Stack-based buffer overflow in jp2x.dll in LuraWave JP2 ActiveX Control 2.1.5.5 and other versions before 2.1.5.11 allows remote attackers to execute arbitrary code via a JPEG2000 JP2 file with a crafted Quantization Default QCD marker segment...
CVE-2012-0977
CVE-2012-0977 concerns a stack-based buffer overflow in jp2_x.dll of the LuraWave JP2 ActiveX Control (versions up to 2.1.5.10; fixed in 2.1.5.11). The flaw allows remote attackers to execute arbitrary code by feeding a JP2 file containing a crafted Quantization Default (QCD) marker segment. Affe...
CVE-2012-0978
Stack-based buffer overflow in npjp2.dll in LuraWave JP2 Browser Plug-In 1.1.1.11 and other versions before 2.1.1.11 allows remote attackers to execute arbitrary code via a JPEG2000 JP2 file with a crafted Quantization Default QCD marker segment...
CVE-2012-0978
CVE-2012-0978 describes a stack-based buffer overflow in the npjp2.dll component of the LuraWave JP2 Browser Plug-In. The vulnerability affects versions up to, but not including, 2.1.1.11 (the plug-in versions before 2.1.1.11). An attacker could trigger the overflow by processing a crafted JPEG20...
IrfanView JPEG-2000 Plugin Remote Stack Based Buffer Overflow Vulnerability
This host has IrfanView with JPEG-2000 plugin installed and is prone to stack based buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: gbirfanviewjpeg2000bofvuln.nasl 5940 2017-04-12 09:02:05Z teissa $ IrfanView JPEG-2000 Plugin Remote Stack Based Buffer Overflow Vulnerability Authors...
CVE-2012-0897
CVE-2012-0897: A stack-based buffer overflow in the IrfanView JPEG2000 plugin (JP2) allows remote code execution when parsing a crafted Quantization Default (QCD) marker in a JPEG2000 file. Affected: IrfanView PlugIns prior to 4.33. Impact, per sources: remote arbitrary code execution and possibl...
[SECURITY] Fedora 15 Update: jasper-1.900.1-18.fc15
This package contains an implementation of the image compression standard JPEG-2000, Part 1. It consists of tools for conversion to and from the JP2 and JPC formats...
[SECURITY] Fedora 16 Update: jasper-1.900.1-18.fc16
This package contains an implementation of the image compression standard JPEG-2000, Part 1. It consists of tools for conversion to and from the JP2 and JPC formats...
Apple QuickTime multiple security vulnerabilities
Memory corruptions on MPEG, Sorenson, AVI, JP2, FlashPix, GIF, PICT, QTVR and another video formats parsing...