EUVD-2017-16294

Malware in sbrugna...

SUSE CVE-2013-1579

The rtpsutiladdbitmap function in epan/dissectors/packet-rtps.c in the RTPS dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly implement certain nested loops for processing bitmap data, which allows remote attackers to cause a denial of service infinite loop via a...

SUSE CVE-2015-8870

Integer overflow in tools/bmp2tiff.c in LibTIFF before 4.0.4 allows remote attackers to cause a denial of service heap-based buffer over-read, or possibly obtain sensitive information from process memory, via crafted width and length values in RLE4 or RLE8 data in a BMP file...

Memory Corruption Vulnerability in CloudPulse Passport Recognition Software

Xiamen Cloud Pulse Technology Co., Ltd. was established in June 2002, Cloud Pulse technology is mainly developed in the cell phone photo text recognition, document recognition, bank card recognition, business card recognition, cell phone information network/PC synchronization and management...

Foxit Reader and Foxit PhantomPDF for Windows Out-of-Bounds Read Vulnerability (CNVD-2018-23237)

Foxit Reader for Windows is a Windows-based PDF document reader from China's Foxit Foxit Software Corporation.Foxit PhantomPDF for Windows is its commercial version. An out-of-bounds read vulnerability exists in the processing of BMP images in Foxit Reader 9.2.0.9297 and earlier versions and Foxi...

Memory Corruption Vulnerability in DWGSeePro's Handling of BMP Files

DWGSeePro is an image-based processing tool. A memory corruption vulnerability exists in DWGSeePro when processing BMP images. An attacker can cause the program to crash by constructing a malformed BMP image, which if successfully exploited can lead to arbitrary code execution...

PhotoArtist 2 Handles BMP with Denial of Service Vulnerability

PhotoArtist 2 is a photo manipulation tool. PhotoArtist 2 suffers from a denial of service vulnerability when processing BMP format, which can be exploited to cause a program crash by constructing a malformed BMP image that can be successfully exploited to cause arbitrary code execution...

UBUNTU-CVE-2017-9178

libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service invalid write and SEGV, related to the ReadImage function in input-bmp.c:421:11...

potrace heap buffer overflow vulnerability (CNVD-2016-10136)

potrace is a set of bitmap image processing tools developed by software developer Peter Selinger. The tool offers the ability to add smoothing effects, free scaling of images, and more. A buffer overflow vulnerability exists in bitmapio.c:652:11. An attacker could exploit this vulnerability to...

potrace heap buffer overflow vulnerability (CNVD-2016-10138)

potrace is a set of bitmap image processing tools developed by software developer Peter Selinger. The tool offers the ability to add smoothing effects, free scaling of images, and more. A buffer overflow vulnerability exists in potrace bitmapio.c:717:4. An attacker could use this vulnerability to...

potrace null pointer backreference vulnerability

potrace is a set of bitmap image processing tools developed by software developer Peter Selinger. The tool offers the ability to add smoothing effects, free scaling of images, and more. A null pointer back-reference vulnerability exists in potrace bitmapio.c:717:4. A remote attacker can exploit...

Microsoft Windows - GDI+ ValidateBitmapInfo Invalid Pointer Arithmetic Out-of-Bounds Reads (MS16-097)

Microsoft Windows - GDI+ ValidateBitmapInfo Invalid Pointer Arithmetic Out-of-Bounds Reads MS16-097 Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=826 The GDI+ library can handle bitmaps originating from untrusted sources through a variety of attack vectors, like EMF files, whi...

Microsoft Windows Kernel Bitmap Processing Memory Misreference Vulnerability

Microsoft Windows is a popular operating system. A memory misreference vulnerability exists in the Microsoft Windows kernel processing bitmap, which allows local attackers to exploit the vulnerability to execute arbitrary code with elevated privileges...

DEBIAN-CVE-2013-1579

The rtpsutiladdbitmap function in epan/dissectors/packet-rtps.c in the RTPS dissector in Wireshark 1.6.x before 1.6.13 and 1.8.x before 1.8.5 does not properly implement certain nested loops for processing bitmap data, which allows remote attackers to cause a denial of service infinite loop via a...

Intel Desktop Board Bitmap Processing Buffer Overflow (INTEL-SA-00020)

The version of the Intel BIOS on the remote host is affected by a local buffer overflow vulnerability due to a flaw in its Bitmap processing code. A local attacker may be able to leverage this issue to trigger a denial of service or to escalate privileges. C Tenable Network Security, Inc...

Google Chrome Buffer Overflow Vulnerability

Google Chrome is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Heap overflow

Heap-based buffer overflow in the bitmap processing routine in Microsoft Windows Media Player 7.1 on Windows 2000 SP4, Media Player 9 on Windows 2000 SP4 and XP SP1, and Media Player 10 on XP SP1 and SP2 allows remote attackers to execute arbitrary code via a crafted bitmap .BMP file that specifi...

CVE-2006-0006

CVE-2006-0006 is a heap-based buffer overflow in Windows Media Player’s bitmap processing. A crafted BMP can trigger an overflow when the file declares a size of 0, allowing remote code execution. Affected products/versions include Windows Media Player 7.1 on Windows 2000 SP4, Media Player 9 on W...