11 matches found
SUSE CVE-2004-1309
Heap-based buffer overflow in the demuxopenbmp function in demuxbmp.c for Unix MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a bitmap BMP file containing a large biClrUsed field...
CVE-2015-8571
CVE-2015-8571 affects Autodesk Design Review prior to 2013 Hotfix 2. The issue is an integer overflow in BMP handling (biClrUsed) that can trigger a buffer overflow and allow remote code execution. Exploitation is possible via crafted BMP files; per ZDI, user interaction is required to exploit. R...
Autodesk Design Review BMP biClrUsed Remote Code Execution Vulnerability
Autodesk Design Review is free DWF viewer software. Autodesk Design Review suffers from a security vulnerability in the handling of BMP files due to an integer overflow test failure when multiplying the biClrUsed value by four. An attacker could exploit this vulnerability to execute arbitrary cod...
Microsoft Windows CreateSizedDIBSECTION Stack Buffer Overflow
No description provided by source. $Id: ms11006createsizeddibsection.rb 11730 2011-02-08 23:31:44Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing...
Windows Thumbnail View CreateSizedDIBSECTION buffer overflow
Added: 01/14/2011 CVE: CVE-2010-3970 BID: 45662 OSVDB: 70263 Background The shimgvw.dll library is part of the Microsoft Graphics Rendering Engine. Problem A vulnerability in shimgvw.dll allows command execution when Windows renders a thumbnail image which passes a specially crafted biClrUsed...
Windows Thumbnail View CreateSizedDIBSECTION buffer overflow
Added: 01/14/2011 CVE: CVE-2010-3970 BID: 45662 OSVDB: 70263 Background The shimgvw.dll library is part of the Microsoft Graphics Rendering Engine. Problem A vulnerability in shimgvw.dll allows command execution when Windows renders a thumbnail image which passes a specially crafted biClrUsed...
Windows Thumbnail View CreateSizedDIBSECTION buffer overflow
Added: 01/14/2011 CVE: CVE-2010-3970 BID: 45662 OSVDB: 70263 Background The shimgvw.dll library is part of the Microsoft Graphics Rendering Engine. Problem A vulnerability in shimgvw.dll allows command execution when Windows renders a thumbnail image which passes a specially crafted biClrUsed...
Microsoft Windows CreateSizedDIBSECTION Stack Buffer Overflow
$Id: ms11xxxcreatesizeddibsection.rb 11473 2011-01-04 23:00:45Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...
Stack overflow
Stack-based buffer overflow in the CreateSizedDIBSECTION function in shimgvw.dll in the Windows Shell graphics processor aka graphics rendering engine in Microsoft Windows XP SP2 and SP3, Server 2003 SP2, Vista SP1 and SP2, and Server 2008 Gold and SP2 allows remote attackers to execute arbitrary...
PT-2010-2814 · Microsoft · Windows +1
Name of the Vulnerable Software and Affected Versions: Microsoft Windows versions prior to 7 Description: The issue allows remote attackers to cause a denial of service, consuming memory and CPU, via a crafted biClrUsed value in the BITMAPINFO header of a .ANI file. This is related to the ANI...
DEBIAN-CVE-2004-1309
Heap-based buffer overflow in the demuxopenbmp function in demuxbmp.c for Unix MPlayer 1.0pre5 allows remote attackers to execute arbitrary code via a bitmap BMP file containing a large biClrUsed field...