107 matches found
CVE-2017-12106
A memory corruption vulnerability exists in the .TGA parsing functionality of Computerinsel Photoline 20.02. A specially crafted .TGA file can cause an out of bounds write resulting in potential code execution. An attacker can send a specific .TGA file to trigger this vulnerability...
CVE-2017-2920
An memory corruption vulnerability exists in the .SVG parsing functionality of Computerinsel Photoline 20.02. A specially crafted .SVG file can cause a vulnerability resulting in memory corruption, which can potentially lead to arbitrary code execution. An attacker can send a specific .SVG file t...
Memory corruption
A memory corruption vulnerability exists in the .TGA parsing functionality of Computerinsel Photoline 20.02. A specially crafted .TGA file can cause an out of bounds write resulting in potential code execution. An attacker can send a specific .TGA file to trigger this vulnerability...
CVE-2017-2920
An memory corruption vulnerability exists in the .SVG parsing functionality of Computerinsel Photoline 20.02. A specially crafted .SVG file can cause a vulnerability resulting in memory corruption, which can potentially lead to arbitrary code execution. An attacker can send a specific .SVG file t...
CVE-2017-12106
CVE-2017-12106 affects Computerinsel Photoline 20.02. The vulnerability resides in the .TGA parsing code, where a dword read from a crafted TGA file is used as a loop count, enabling out-of-bounds writes and potential code execution. Public sources (Talos and Seebug) describe a memory-corruption ...
CVE-2017-12106
A memory corruption vulnerability exists in the .TGA parsing functionality of Computerinsel Photoline 20.02. A specially crafted .TGA file can cause an out of bounds write resulting in potential code execution. An attacker can send a specific .TGA file to trigger this vulnerability...
CVE-2017-2920
An memory corruption vulnerability exists in the .SVG parsing functionality of Computerinsel Photoline 20.02. A specially crafted .SVG file can cause a vulnerability resulting in memory corruption, which can potentially lead to arbitrary code execution. An attacker can send a specific .SVG file t...
CVE-2017-2880
CVE-2017-2880 affects Computerinsel Photoline 20.02, specifically the GIF parsing code. A memory corruption vulnerability arises from reading a byte from the GIF stream (byte value used to control a loop) that drives memory writes, potentially leading to memory overflow and remote code execution....
CVE-2017-2880
An memory corruption vulnerability exists in the .GIF parsing functionality of Computerinsel Photoline 20.02. A specially crafted .GIF file can cause a vulnerability resulting in potential code execution. An attacker can send specific .GIF file to trigger this vulnerability...
CVE-2017-2920
Summary (CVE-2017-2920): A memory corruption vulnerability in the tag parsing functionality of LibOFX (OFX processing library) can be triggered by specially crafted OFX/.SVG-derivative inputs, potentially allowing out-of-bounds writes. Documented in multiple advisories (Mageia, openSUSE, SUSE, Ge...
Vulnerability Spotlight: Multiple vulnerabilities in Computerinsel Photoline
These vulnerabilities are discovered by Piotr Bania of Cisco Talos.Today, Talos is releasing details of multiple vulnerabilities discovered within the Computerinsel GmbH PhotoLine image processing software. PhotoLine, developed by Computerinsel GmbH, is a well established raster and vector graphi...
Computerinsel Photoline SVG Parsing Code Execution Vulnerability
Summary An memory corruption vulnerability exists in the .SVG parsing functionality of Computerinsel Photoline 20.02. A specially crafted .SVG file can cause a vulnerability resulting in memory corruption, which can potentially lead to arbitrary code execution. An attacker can send a specific .SV...
Computerinsel Photoline TGA Parsing Code Execution Vulnerability
Summary A memory corruption vulnerability exists in the .TGA parsing functionality of Computerinsel Photoline 20.02. A specially crafted .TGA file can cause an out of bounds write resulting in potential code execution. An attacker can send a specific .TGA file to trigger this vulnerability. Teste...
Memory Corruption Vulnerability in PhotoLine's Processing of PCX Images
PhotoLine is a professional image editing software from Germany. A memory corruption vulnerability exists in the software's handling of the PCX format, which could be exploited by attackers to construct malformed PCX files that could crash the program...
PhotoLine Handles EMF Image Memory Corruption Vulnerability
PhotoLine is a professional image editing software from Germany. A memory corruption vulnerability exists in the software's handling of the EMF format, which could be exploited by attackers to construct malformed EMF files that could crash the program...
PhotoLine Handles TIFF Image Memory Corruption Vulnerability
PhotoLine is a professional image editing software from Germany. A memory corruption vulnerability exists in the software's handling of the TIFF format, which could be exploited by attackers to construct malformed TIFF files that could crash the program...
PhotoLine Handles JPG Image Memory Corruption Vulnerability
PhotoLine is a professional image editing software from Germany. A memory corruption vulnerability exists in the program's handling of the JPG format. Allowing an attacker to exploit this vulnerability to construct malformed JPG files could crash the program...
Memory Corruption Vulnerability in PhotoLine's Processing of BMP Images
PhotoLine is a professional image editing software from Germany. The software suffers from a memory corruption vulnerability when dealing with the BMP format, which can be exploited by an attacker to construct malformed BMP files that can crash the program and cause a denial of service condition...
Memory Corruption Vulnerability in PhotoLine's Handling of AVI Files
PhotoLine is a professional image editing software from Germany. A memory corruption vulnerability exists in the software's handling of the AVI format, which can be exploited by an attacker to construct malformed AVI files that can crash the program and cause a denial of service condition...
Stack Buffer Overflow Vulnerability in PhotoLine's Handling of GIF Images
PhotoLine is a professional image editing software from Germany. The software suffers from a stack buffer overflow vulnerability when processing the GIF format. An attacker can exploit the vulnerability to flood the SEH chain table, resulting in arbitrary code execution...