Lucene search
K

73 matches found

CVE
CVE
added 2021/02/10 9:45 p.m.60 views

CVE-2020-13561

CVE-2020-13561 is an out-of-bounds write vulnerability in the TIFF parser of Accusoft ImageGear 19.8. The TALOS analysis describes a flaw in the image processing pipeline (sigread buffer handling) that can be triggered by a malformed TIFF file, leading to memory corruption and potential code exec...

9.8CVSS8.8AI score0.01855EPSS
Exploits1References1Affected Software1
Talos
Talos
added 2021/02/09 12:0 a.m.132 views

Accusoft ImageGear TIFF index record out-of-bounds write vulnerability

Summary An out-of-bounds write vulnerability exists in the TIFF parser of Accusoft ImageGear 19.8. A specially crafted malformed file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability. Tested Versions Accusoft ImageGear 19.8 Product URLs...

9.8CVSS9AI score0.01855EPSS
Exploits1
CNVD
CNVD
added 2020/03/09 12:0 a.m.2 views

Accusoft ImageGear Buffer Overflow Vulnerability (CNVD-2020-16508)

Accusoft ImageGear is a software development kit SDK for image processing from Accusoft, USA. A buffer overflow vulnerability exists in the TIFF raster image parser igcore19d.dll in Accusoft ImageGear version 19.5.0. A remote attacker could exploit this vulnerability to execute code...

9.8CVSS7.6AI score0.03687EPSS
Exploits1References1
Talos
Talos
added 2020/02/10 12:0 a.m.75 views

Accusoft ImageGear TIFF tifread code execution vulnerability

Summary An exploitable out-of-bounds write vulnerability exists in the igcore19d.dll TIFF tifread parser of the Accusoft ImageGear 19.5.0 library. A specially crafted TIFF file can cause an out-of-bounds write, resulting in a remote code execution. An attacker needs to provide a malformed file to...

9.8CVSS9AI score0.03687EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2019/08/06 2:22 p.m.8 views

exiv2: Segmentation fault in Exiv2::Internal::TiffParserWorker::findPrimaryGroups function

There is a SEGV in Exiv2::Internal::TiffParserWorker::findPrimaryGroups of tiffimageint.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...

6.5CVSS5.9AI score0.02287EPSS
Exploits1References4
Veracode
Veracode
added 2019/07/12 2:44 a.m.18 views

Denial Of Service (DoS)

libexiv2.so is vulnerable to denial of service. A heap-based buffer overflow in the tiff parser allows an attacker to crash the application, or potentially execute arbitrary code...

5.5CVSS6.1AI score0.00992EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2018/12/13 12:0 a.m.2 views

Exiv2 SEGV Vulnerability

Exiv2 is a cross-platform C++ library and command line utility for managing image metadata. A SEGV vulnerability exists in Exiv2::Internal::TiffParserWorker::findPrimaryGroups in tiffimageint.cpp in Exiv2 0.27-RC3, which can be exploited by a remote attacker to cause a denial of service via...

6.5CVSS6.9AI score0.02287EPSS
Exploits1References1
OSV
OSV
added 2018/12/12 10:29 a.m.2 views

DEBIAN-CVE-2018-20097

There is a SEGV in Exiv2::Internal::TiffParserWorker::findPrimaryGroups of tiffimageint.cpp in Exiv2 0.27-RC3. A crafted input will lead to a remote denial of service attack...

6.5CVSS7.2AI score0.02287EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2017/12/11 1:50 p.m.26 views

CVE-2017-1000127

Exiv2 0.26 contains a heap buffer overflow in tiff parser...

5.5CVSS3.7AI score0.00992EPSS
Exploits0References1
CNVD
CNVD
added 2017/11/22 12:0 a.m.4 views

Exiv2 tiff parser heap buffer overflow vulnerability

Exiv2 is a set of C++ libraries and command line applications for managing image metadata developed by software developer Andreas Huggel, which provides the ability to quickly read and write image metadata in a variety of formats such as EXIF, IPTC, and XMP. tiff parser is one of the TIFF Tagged...

5.5CVSS8.2AI score0.00992EPSS
Exploits0References1
PyPA
PyPA
added 2017/11/17 10:29 p.m.5 views

PYSEC-2017-116

Exiv2 0.26 contains a heap buffer overflow in tiff parser...

5.5CVSS7.5AI score0.00992EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2017/11/17 10:29 p.m.12 views

Heap overflow

Exiv2 0.26 contains a heap buffer overflow in tiff parser...

4.3CVSS5.8AI score0.00992EPSS
Exploits0References1Affected Software1
UbuntuCve
UbuntuCve
added 2017/11/17 10:29 p.m.19 views

CVE-2017-1000127

Exiv2 0.26 contains a heap buffer overflow in tiff parser...

5.5CVSS7AI score0.00992EPSS
Exploits0References2
OSV
OSV
added 2017/11/17 10:29 p.m.18 views

CVE-2017-1000127

Exiv2 0.26 contains a heap buffer overflow in tiff parser...

5.5CVSS7.3AI score
Exploits0References1
OSV
OSV
added 2017/11/17 10:29 p.m.3 views

PYSEC-2017-116

Exiv2 0.26 contains a heap buffer overflow in tiff parser...

5.5CVSS7.7AI score
Exploits0References1
Cvelist
Cvelist
added 2017/11/17 10:0 p.m.20 views

CVE-2017-1000127

Exiv2 0.26 contains a heap buffer overflow in tiff parser...

5.7AI score0.00992EPSS
Exploits0References1
CVE
CVE
added 2017/11/17 10:0 p.m.51 views

CVE-2017-1000127

CVE-2017-1000127 : Exiv2 0.26 contains a heap-based buffer overflow in the TIFF parser. The connected PTSecurity entries indicate the vulnerability is addressed by upgrading Exiv2 to 0.27.2 or later. Public details in the provided docs confirm the issue is tied to the TIFF parser in Exiv2 0.26; n...

5.5CVSS5.6AI score0.00992EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVE
added 2017/11/17 10:0 p.m.15 views

CVE-2017-1000127

Exiv2 0.26 contains a heap buffer overflow in tiff parser...

5.5CVSS6AI score0.00992EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.35 views

Oracle Linux 3 / 4 : openoffice.org (ELSA-2007-0848)

From Red Hat Security Advisory 2007:0848 : Updated openoffice.org packages to correct a security issue are now available for Red Hat Enterprise Linux 3, 4, and 5. This update has been rated as having important security impact by the Red Hat Security Response Team. OpenOffice.org is an office...

9.3CVSS5.5AI score0.1132EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2012/08/01 12:0 a.m.27 views

Scientific Linux Security Update : openoffice.org on SL5.x, SL4.x, SL3.x i386/x86_64

A heap overflow flaw was found in the TIFF parser. An attacker could create a carefully crafted document containing a malicious TIFF file that could cause OpenOffice.org to crash or possibly execute arbitrary code if opened by a victim. CVE-2007-2834 %NASLMINLEVEL 70300 C Tenable Network Security...

9.3CVSS5.6AI score0.1132EPSS
Exploits0References2
Rows per page
Query Builder