exiftool 操作系统命令注入漏洞

Exiftool is an open-source application developed by ExifTool. It makes metadata more accessible. Versions of Exiftool 13.49 and earlier had a vulnerability related to operating system command injection. This vulnerability stemmed from the SetMacOSTags function in the PNG file parser component,...

Fedora 38 : clamav (2024-92b8ac25a5)

The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-92b8ac25a5 advisory. ClamAV 1.0.6 is a critical patch release with the following fixes: Updated select Rust dependencies to the latest versions. This resolved Cargo audit...

Fedora 40 : clamav (2024-34474f346b)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-34474f346b advisory. ClamAV 1.0.6 is a critical patch release with the following fixes: Updated select Rust dependencies to the latest versions. This resolved Cargo audit...

Fedora 39 : clamav (2024-1a79c2ef63)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-1a79c2ef63 advisory. ClamAV 1.0.6 is a critical patch release with the following fixes: Updated select Rust dependencies to the latest versions. This resolved Cargo audit...

SUSE CVE-2017-3077

Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable memory corruption vulnerability in the PNG image parser. Successful exploitation could lead to arbitrary code execution...

CVE-2020-6068

An exploitable out-of-bounds write vulnerability exists in the igcore19d.dll PNG pngread parser of the Accusoft ImageGear 19.5.0 library. A specially crafted PNG file can cause an out-of-bounds write, resulting in a remote code execution. An attacker needs to provide a malformed file to the victi...

Out-of-bounds

An exploitable out-of-bounds write vulnerability exists in the igcore19d.dll PNG pngread parser of the Accusoft ImageGear 19.5.0 library. A specially crafted PNG file can cause an out-of-bounds write, resulting in a remote code execution. An attacker needs to provide a malformed file to the victi...

CVE-2017-3077

Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable memory corruption vulnerability in the PNG image parser. Successful exploitation could lead to arbitrary code execution...

UBUNTU-CVE-2017-3077

Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable memory corruption vulnerability in the PNG image parser. Successful exploitation could lead to arbitrary code execution...

flash-plugin: multiple code execution issues fixed in APSB17-17

Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable memory corruption vulnerability in the PNG image parser. Successful exploitation could lead to arbitrary code execution...

PotPlayer MP3 Module Buffer Overflow Vulnerability

PotPlayer is a media player from the Korean company Daum. PotPlayer MP3 module buffer overflow vulnerability, when the MP3 module's image module's PNG parser buffer offset is 5B, POTPLAYER program will crash, an attacker can use this vulnerability to launch a denial of service attack on the progr...

PotPlayer 1.6.5x - '.mp3' Crash (PoC)

Exploit Title: POTPLAYER 1.6.5x MP3 CRASH POC Date: 08-02-2016 Exploit Author: Shantanu Khandelwal Vendor Homepage: https://potplayer.daum.net/ Software Link: 32-Bit http://get.daum.net/PotPlayer/v3/PotPlayerSetup.exe Software Link: 64-Bit http://get.daum.net/PotPlayer64/v3/PotPlayerSetup64.exe...

Adobe Photoshop CC Multiple Vulnerabilities (APSB15-12) (Mac OS X)

The version of Adobe Photoshop installed on the remote Mac OS X host is prior or equal to CC 2014 15.2.2 2014.2.2. It is, therefore, affected by the following vulnerabilities : - An unspecified memory corruption flaw exists due to not properly validating user-supplied input. An attacker can explo...

Photoshop CC2014 / Bridge CC 2014 - '.png' Parsing Memory Corruption

Application: Adobe Photoshop CC 2014 & Bridge CC 2014 Platforms: Windows Versions: The vulnerability is confirmed in version Photoshop CC 2014 and Bridge CC 2014. Secunia: PRL: 2015-08 Author: Francis Provencher Protek Research Lab’s Website: http://www.protekresearchlab.com/ Twitter:...

Photoshop CC2014 and Bridge CC 2014 PDF Parsing Memory Corruption Vulnerabilities

Photoshop CC2014 and Bridge CC 2014 PDF Parsing Memory Corruption Vulnerabilities. CVE-2015-3112. Dos exploit for windows platform Application: Adobe Photoshop CC 2014 & Bridge CC 2014 Platforms: Windows Versions: The vulnerability is confirmed in version Photoshop CC 2014 and Bridge CC 2014...