2531 matches found
ZDI-11-072: Adobe Reader BMP ColorData Remote Code Execution Vulnerability
ZDI-11-072: Adobe Reader BMP ColorData Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-072 February 8, 2011 -- CVE ID: CVE-2011-0599 -- CVSS: 9, AV:N/AC:L/Au:N/C:P/I:P/A:C -- Affected Vendors: Adobe -- Affected Products: Adobe Reader -- TippingPointTM IPS...
Heap overflow
The Bitmap parsing component in 2d.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via an image with crafted 1 height and 2 width values for an RLE8 compressed bitmap, which trigger...
CVE-2011-0599
The Bitmap parsing component in rt3d.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via a crafted image that causes an invalid pointer calculation related to 4/8-bit RLE compressio...
CVE-2011-0596
The Bitmap parsing component in 2d.dll in Adobe Reader and Acrobat 10.x before 10.0.1, 9.x before 9.4.2, and 8.x before 8.2.6 on Windows and Mac OS X allow remote attackers to execute arbitrary code via an image with crafted 1 height and 2 width values for an RLE8 compressed bitmap, which trigger...
CVE-2011-0596
Adobe Reader/Acrobat is affected by CVE-2011-0596 due to a heap-based buffer overflow in the bitmap parsing component (RLE_8) of 2d.dll. Affected versions include Windows and macOS: Acrobat/Reader 10.x prior to 10.0.1, 9.x prior to 9.4.2, and 8.x prior to 8.2.6. Exploitation would require process...
Adobe Flash Player Point Object Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Flash Player. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within construction ...
Adobe Reader BMP ColorData Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The flaw exists within the Bitmap parsing component...
Adobe Reader BMP RLE_8 Decompression Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Adobe Reader. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The flaw exists within the Bitmap parsing component...
MS11-006: Vulnerability in Windows Shell Graphics Processing Could Allow Remote Code Execution (2483185)
If a remote attacker can trick a user on the affected host into opening a specially crafted bitmap file, a vulnerability in the graphics rendering engine that arises due to its failure to validate the 'biClrUsed' parameter could be leveraged to execute arbitrary code on the host subject to the...
Microsoft Graphics Rendering Engine Thumbnail Image Stack Buffer Overflow (CVE-2010-3970)
Thumbnails are reduced-size versions of pictures, used to help in recognizing and organizing them, serving the same role for images as a normal text index does for words. A stack buffer overflow vulnerability has been discovered in Microsoft's Graphics Rendering Engine. The vulnerability is due t...
MS KB2490606: Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution
If a remote attacker can trick a user on the affected host into opening a specially crafted bitmap file, the attacker could leverage an as-yet unpatched vulnerability in the graphics rendering engine that arises due to its failure to validate the 'biClrUsed' parameter and thereby execute arbitrar...
LEADTOOLS v11.5.0.9 ltdlg11n.ocx Bitmap Access Violation
Exploit for windows platform in category dos / poc ======================================================== LEADTOOLS v11.5.0.9 ltdlg11n.ocx Bitmap Access Violation ======================================================== Test Exploit Page targetFile = "C:\Program...
LeadTools 11.5.0.9 - ltdlg11n.ocx Bitmap Access Violation Denial of Service
LeadTools 11.5.0.9 - ltdlg11n.ocx Bitmap Access Violation Denial of Service Test Exploit Page targetFile = "C:\Program Files\Rational\common\ltdlg11n.ocx" prototype = "Property Let Bitmap As Long" memberName = "Bitmap" progid = "LEADDlgLib.LEADDlg" argCount = 1 arg1=-1 target.Bitmap = arg1...
LeadTools 11.5.0.9 - 'ltdlg11n.ocx' Bitmap Access Violation Denial of Service
Test Exploit Page targetFile = "C:\Program Files\Rational\common\ltdlg11n.ocx" prototype = "Property Let Bitmap As Long" memberName = "Bitmap" progid = "LEADDlgLib.LEADDlg" argCount = 1 arg1=-1 target.Bitmap = arg1 Exception Code: ACCESSVIOLATION Disasm: AA62D2 CMP DWORD PTR EAX,6461656C Seh Chai...
Microsoft Mspaint - .bmp Crash (PoC)
Microsoft Mspaint - .bmp Crash PoC Exploit Title: Bmp crash , microsft paint Date: 187/09/2010 Author: andrew hayn Software Link: Version: winxp/sp3 Tested on: winxp/sp2/sp3 BMP File: https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/15034.zip...
CVE-2010-2739
Buffer overflow in the CreateDIBPalette function in win32k.sys in Microsoft Windows XP SP3, Server 2003 R2 Enterprise SP2, Vista Business SP1, Windows 7, and Server 2008 SP2 allows local users to cause a denial of service crash and possibly execute arbitrary code by performing a clipboard operati...
Buffer overflow
Buffer overflow in the CreateDIBPalette function in win32k.sys in Microsoft Windows XP SP3, Server 2003 R2 Enterprise SP2, Vista Business SP1, Windows 7, and Server 2008 SP2 allows local users to cause a denial of service crash and possibly execute arbitrary code by performing a clipboard operati...
CVE-2010-2739
The CVE-2010-2739 issue is a buffer overflow in the Windows win32k.sys CreateDIBPalette() function. A crafted bitmap with a very large color palette, used via GetClipboardData, can crash the system and may allow arbitrary code execution locally on affected Windows versions: XP SP3, Server 2003 R2...
Fedora 12 : libHX-3.6-1.fc12 / pam_mount-2.5-1.fc12 (2010-13155)
Update to libHX 3.6 fixing a buffer overflow in HXsplit: http://libhx.gi t.sourceforge.net/git/gitweb.cgi?p=libhx/libhx;a=commitdiff;h=904a46f9 0d pammount v2.5 August 10 2010 =============================== Changes: - mount.crypt: fix incorrect processing of binary files in keyfile passthrough -...
DEBIAN-CVE-2010-3053
bdf/bdflib.c in FreeType before 2.4.2 allows remote attackers to cause a denial of service application crash via a crafted BDF font file, related to an attempted modification of a value in a static string...