2531 matches found
Linux MD Driver Initialization Memory Disclosure Vulnerability
Linux kernel is an open source operating system. A security vulnerability exists in Linux kernel, which can be exploited by a local attacker to obtain 4095 bytes of information in kernel memory when a bitmap file requests a device via getbitmapfile but bitmap is disabled and the system fails to...
Microsoft Windows Server Elevation of Privilege Vulnerability (CNVD-2015-04662)
Microsoft Windows Server is a series of servers based on the windows operating system launched by the U.S. Microsoft Microsoft. A security vulnerability exists in the graphics component of Microsoft Windows. A local attacker could exploit the vulnerability to gain privileges through incorrect...
Microsoft Windows Graphics Component Privilege Elevation Vulnerability (3069392)
This host is missing an important security update according to Microsoft Bulletin MS15-072. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
Microsoft Windows Graphics Component Elevation of Privilege (MS15-072; CVE-2015-2364)
An elevation of privilege vulnerability exists in Windows Graphics Component. The vulnerability is due to an error in the way Windows Graphics component improperly process bitmap conversions. A remote attacker can exploit this vulnerability by enticing a user to open a specially crafted file in a...
DEBIAN-CVE-2015-0848
Heap-based buffer overflow in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted BMP image...
Design/Logic Flaw
Use-after-free vulnerability in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges...
CVE-2015-1722
Use-after-free vulnerability in the kernel-mode drivers in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 allows local users to gain privileges...
Microsoft Windows Kernel Bitmap Processing Memory Misreference Vulnerability
Microsoft Windows is a popular operating system. A memory misreference vulnerability exists in the Microsoft Windows kernel processing bitmap, which allows local attackers to exploit the vulnerability to execute arbitrary code with elevated privileges...
Microsoft Windows Kernel Bitmap Handling CVE-2015-1722 Local Privilege Escalation Vulnerability
Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges and corrupt kernel memory. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7 for...
The vulnerability of the IBM Domino electronic document management system allows a perpetrator to execute arbitrary code.
The vulnerability of the IBM Domino electronic document management system arises due to a buffer overflow error. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafted BMP image...
The vulnerability of the IBM Domino electronic document management system allows a perpetrator to execute arbitrary code.
The vulnerability of the IBM Domino electronic document management system arises due to a buffer overflow error. Exploiting this vulnerability allows an attacker, operating remotely, to execute arbitrary code using a specially crafted BMP image...
USN-2626-1 qt4-x11, qtbase-opensource-src vulnerabilities
Wolfgang Schenk discovered that Qt incorrectly handled certain malformed GIF images. If a user or automated system were tricked into opening a specially crafted GIF image, a remote attacker could use this issue to cause Qt to crash, resulting in a denial of service. This issue only applied to...
IBM Domino Stack Buffer Overflow Vulnerability (CNVD-2015-03371)
IBM Domino is the U.S. IBM's set of e-mail, document database, rapid application development technology and Web technology as one of the e-mail and clustering platform. A stack buffer overflow vulnerability in IBM Domino 8.5 FP6 IF7 before 8.5.3 and 9.0 FP3 IF3 before 9.0.1 allows remote attacker...
UBUNTU-CVE-2015-1858
Multiple buffer overflows in gui/image/qbmphandler.cpp in the QtBase module in Qt before 4.8.7 and 5.x before 5.4.2 allow remote attackers to cause a denial of service segmentation fault and crash and possibly execute arbitrary code via a crafted BMP image...
SuSE 11.3 Security Update : xorg-x11-libs (SAT Patch Number 10487)
LibXFont was updated to fix security problems that could be used by local attackers to gain X server privileges root. The following security issues have been fixed : - The bdf parser reads a count for the number of properties defined in a font from the font file, and allocates arrays with entries...
USN-2553-1 tiff vulnerabilities
William Robinet discovered that LibTIFF incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image, a remote attacker could crash the application, leading to a denial of service, or possibly execute arbitrary code with user...
Potrace Integer Overflow Vulnerability
potrace is a set of bitmap image processing tools developed by software developer Peter Selinger. The tool offers the ability to add smoothing effects, free scaling of images, and more. An integer overflow vulnerability exists in potrace version 1.11. A remote attacker can exploit this...
CVE-2013-7437
Multiple integer overflows in potrace 1.11 allow remote attackers to cause a denial of service crash via large dimensions in a BMP image, which triggers a buffer overflow...
UBUNTU-CVE-2013-7437
Multiple integer overflows in potrace 1.11 allow remote attackers to cause a denial of service crash via large dimensions in a BMP image, which triggers a buffer overflow...
DEBIAN-CVE-2013-7437
Multiple integer overflows in potrace 1.11 allow remote attackers to cause a denial of service crash via large dimensions in a BMP image, which triggers a buffer overflow...