4 matches found
CVE-2019-14467
The Social Photo Gallery plugin 1.0 for WordPress allows Remote Code Execution by creating an album and attaching a malicious PHP file in the cover photo album, because the file extension is not checked...
iTunes 7.3.x - Heap overflow in album cover parsing
iSEC Partners Security Advisory - 2007-005-itunes https://www.isecpartners.com -------------------------------------------- iTunes 7.3.x - Heap overflow in album cover parsing Vendor: Apple, Inc. Vendor URL: http://www.apple.com Versions affected: Confirmed in iTunes 7.3.2 Systems Affected:...
CVE-2007-3752
Heap-based buffer overflow in Apple iTunes before 7.4 allows remote attackers to cause a denial of service application crash or execute arbitrary code via crafted album cover art in the covr atom of an MP4/AAC file...
CVE-2007-3752
Heap-based buffer overflow in Apple iTunes before 7.4 allows remote attackers to cause a denial of service application crash or execute arbitrary code via crafted album cover art in the covr atom of an MP4/AAC file...