171 matches found
FreeImage: Multiple vulnerabilities
Background FreeImage is an Open Source library project for developers who would like to support popular graphics image formats like PNG, BMP, JPEG, TIFF and others as needed by today’s multimedia applications. Description Multiple vulnerabilities have been discovered in in FreeImage. Please revie...
libgd Heap Buffer Overflow Vulnerability
libgd also known as GD Graphics Library or libgd2 is an American software developer Thomas Boutell developed an open source library for dynamically creating images . A heap buffer overflow vulnerability exists in libgd, which can be exploited by an attacker to execute arbitrary code in an affecte...
FreeXL: Multiple vulnerabilities
Background FreeXL is an open source library to extract valid data from within an Excel .xls spreadsheet. Description FreeXL’s shared strings and workbook functions are vulnerable to the remote execution of arbitrary code and Denial of Service. This can be achieved through specially crafted...
FreeImage Number Error Vulnerability
FreeImage is a cross-platform open source library for supporting popular graphic image formats. An integer overflow vulnerability exists in the PluginPCX.cpp file in FreeImage 3.17.0 and earlier versions. A remote attacker could exploit this vulnerability to cause a denial of service heap memory...
The vulnerability of the OpenSSL library, which allows a hacker to trigger a service failure
The vulnerability of the X509cmptime function in the OpenSSL library arises due to an overflow in the buffer in the dynamic memory. Exploiting this vulnerability can allow a malicious actor, operating remotely, to trigger a service failure using a specially crafted ASN1TIME field of a certain...
Evergreen Information Disclosure Vulnerability
Evergreen is an open source, highly scalable library system ILS developed by the Evergreen community. The system helps patrons find library materials and helps with library management, organizing catalogs, and distributing those materials, among other things. Evergreen suffers from an information...
Slackware Advisory SSA:2007-178-01 gd
The remote host is missing an update as announced via advisory SSA:2007-178-01. OpenVAS Vulnerability Test $Id: esoftslkssa200717801.nasl 6598 2017-07-07 09:36:44Z cfischer $ Description: Auto-generated from the corresponding slackware advisory Authors: Thomas Reinke Copyright: Copyright c 2012...
CentOS 6 : openjpeg (CESA-2012:1068)
Updated openjpeg packages that fix two security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings, are...
IAXClient Open Source Library iax_net_read Function Packet Handling Remote Overflow
The remote host appears to be using a VoIP software phone application that is affected by multiple buffer overflows. With specially crafted UDP packets, an unauthenticated, remote attacker may be able to leverage these issues to crash the affected application or to execute arbitrary code on the...
Buffer overflow
The iaxnetread function in the iaxclient open source library, as used in multiple products including a LoudHush 1.3.6, b IDE FISK 1.35 and earlier, c Kiax 0.8.5 and earlier, d DIAX, e Ziaxphone, f IAX Phone, g X-lite, h MediaX, i Extreme Networks ePhone, and j iaxComm before 1.2.0, allows remote...
libgd 2.0.33 infinite loop in GIF decoding ?
Introduction --------------- from http://www.boutell.com/gd/ GD is an open source code library for the dynamic creation of images by programmers. GD is written in C, and "wrappers" are available for Perl, PHP and other languages. GD creates PNG, JPEG and GIF images, among other formats. GD is...