121 matches found
CVE-2020-11528
bit2spr 1992-06-07 has a stack-based buffer overflow 129-byte write in convbitmap in bit2spr.c via a long line in a bitmap file...
DEBIAN-CVE-2015-7508
Heap-based buffer overflow in the bmpdecoderle function in libnsbmp.c in Libnsbmp 0.1.2 allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via the last row of RLE data in a crafted BMP file...
Free Photo Viewer Code Issue Vulnerability
Free Photo Viewer is a lightweight photo viewer. A code issue vulnerability exists in Free Photo Viewer. The vulnerability can be exploited to execute arbitrary code via specially crafted BMP and/or TIFF files...
The vulnerability in the software for creating 3D computer graphics with Blender arises from a full-integer overflow, allowing an attacker to execute arbitrary code.
The vulnerability of Blender’s software for creating 3D computer graphics arises from a numerical overflow condition. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created BMP file...
Stack overflow
If a bitmap file is loaded from any un-authenticated source, there is a possibility that the bitmap can potentially cause stack buffer overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...
CVE-2019-2251
CVE-2019-2251 describes a stack-buffer overflow when a bitmap is loaded from an unauthenticated source, affecting Qualcomm/SoC families listed in the initial records (e.g., Snapdragon Auto/Compute/Connectivity and related devices). The vulnerability is tied to closed-source Qualcomm components an...
CVE-2019-2251
If a bitmap file is loaded from any un-authenticated source, there is a possibility that the bitmap can potentially cause stack buffer overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon...
CVE-2019-5088
An exploitable memory corruption vulnerability exists in Investintech Able2Extract Professional 14.0.7 x64. A specially crafted BMP file can cause an out-of-bounds memory write, allowing a potential attacker to execute arbitrary code on the victim machine. Can trigger this vulnerability by sendin...
Adobe Acrobat Pro DC AcroForm Bitmap File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing o...
UBUNTU-CVE-2018-20467
In coders/bmp.c in ImageMagick before 7.0.8-16, an input file can result in an infinite loop and hang, with high CPU and memory consumption. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted file...
The vulnerability of the ReadImage function in the Sam2p image conversion utility allows a attacker to cause a service failure or exert other effects.
The vulnerability of the ReadImage function input-bmp.ci in the Sam2p image conversion utility is related to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to cause service interruptions or other adverse effects...
CVE-2018-9141
On Samsung mobile devices with L5.x, M6.0, and N7.x software, Gallery allows remote attackers to execute arbitrary code via a BMP file with a crafted resolution, aka SVE-2017-11105...
UBUNTU-CVE-2018-6616
In OpenJPEG 2.3.0, there is excessive iteration in the opjt1encodecblks function of openjp2/t1.c. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file...
OpenJPEG integer overflow vulnerability (CNVD-2018-04305)
OpenJPEG is an open source JPEG 2000 codec written in C language. An integer overflow vulnerability exists in OpenJPEG 2.3.0. The vulnerability arises due to an out-of-bounds left shift in the opjj2ksetupencoder function openjp2/j2k.c. A remote attacker could exploit this vulnerability via a...
Blender Sequencer imb_bmp_decode Integer Overflow Vulnerability
Blender is an open source cross-platform all-in-one 3D animation software, providing a series of animated short film production solutions from modeling, animation, materials, rendering, to audio processing, video editing and so on. Blender Sequencer imbbmpdecode has an integer overflow...
Memory Corruption Vulnerability in 2345 Viewer V9.0
2345 Viewer is one of the fastest and most format-compatible high-definition image viewing software. A memory corruption vulnerability exists in 2345 Viewer V9.0 when parsing the BMP file format, which allows an attacker to construct a malicious BMP image file to trigger a memory corruption,...
DEBIAN-CVE-2016-10507
Integer overflow vulnerability in the bmp24toimage function in convertbmp.c in OpenJPEG before 2.2.0 allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted bmp file...
gdk-pixbuf: Heap-based buffer overflow in the gdk_pixbuf_flip function
Heap-based buffer overflow in the gdkpixbufflip function in gdk-pixbuf-scale.c in gdk-pixbuf 2.30.x allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted BMP file...
CVE-2017-9170
libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the ReadImage function in input-bmp.c:370:25...
CVE-2017-9183
libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-bmp.c:309:7...