DEBIAN-CVE-2007-3506

The ftbitmapassurebuffer function in src/base/ftbimap.c in FreeType 2.3.3 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors involving bitmap fonts, related to a "memory buffer overwrite bug."...

CVE-2007-3506

The ftbitmapassurebuffer function in src/base/ftbimap.c in FreeType 2.3.3 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors involving bitmap fonts, related to a "memory buffer overwrite bug."...

CVE-2007-3506

The ftbitmapassurebuffer function in src/base/ftbimap.c in FreeType 2.3.3 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via unspecified vectors involving bitmap fonts, related to a "memory buffer overwrite bug."...

DEBIAN-CVE-2007-3473

The gdImageCreateXbm function in the GD Graphics Library libgd before 2.0.35 allows user-assisted remote attackers to cause a denial of service crash via unspecified vectors involving a gdImageCreate failure...

security flaw

Multiple integer overflows in the 1 createwbmp and 2 readwbmp functions in wbmp.c in the GD library libgd in PHP 4.0.0 through 4.4.6 and 5.0.0 through 5.2.1 allow context-dependent attackers to execute arbitrary code via Wireless Bitmap WBMP images with large width or height values...

ACDSee 9.0 Photo Manager - Multiple '.BMP' Denial of Service Vulnerabilities

// source: https://www.securityfocus.com/bid/23317/info ACDSee 9.0 Photo Manager is prone to multiple denial-of-service vulnerabilities because the application fails to properly handle malformed BMP image files. Successfully exploiting these issues allows attackers to crash the affected...

FastStone Image Viewer 2.9/3.6 - '.bmp' Image Handling Memory Corruption

// source: https://www.securityfocus.com/bid/23312/info FastStone Image Viewer is prone to multiple denial-of-service vulnerabilities because the application fails to properly handle malformed BMP image files. Successfully exploiting these issues allows attackers to crash the affected application...

Multiple font integer overflows (CVE-2007-1352)

Integer overflow in the bdfReadCharacters function in bdfread.c in 1 X.Org libXfont before 20070403 and 2 freetype 2.3.2 and earlier allows remote authenticated users to execute arbitrary code via crafted BDF fonts, which result in a heap overflow...

CVE-2007-0654

Integer underflow in X MultiMedia System xmms 1.2.10 allows user-assisted remote attackers to execute arbitrary code via crafted header information in a skin bitmap image, which results in a stack-based buffer overflow...

Integer overflow

Integer overflow in X MultiMedia System xmms 1.2.10, and possibly other versions, allows user-assisted remote attackers to execute arbitrary code via crafted header information in a skin bitmap image, which triggers memory corruption...

Design/Logic Flaw

Integer underflow in X MultiMedia System xmms 1.2.10 allows user-assisted remote attackers to execute arbitrary code via crafted header information in a skin bitmap image, which results in a stack-based buffer overflow...

CVE-2007-0654

XMMS 1.2.10 contains an integer underflow in the BMP skin header processing, leading to a stack-based buffer overflow that enables remote code execution. Affected files: the skin bitmap handling code within XMMS; impact includes arbitrary code execution on the affected system. Public advisories a...

xmms -- Integer Overflow And Underflow Vulnerabilities

Secunia reports: Secunia Research has discovered two vulnerabilities in XMMS, which can be exploited by malicious people to compromise a user's system. 1 An integer underflow error exists in the processing of skin bitmap images. This can be exploited to cause a stack-based buffer overflow via...

Tencent QQ SuperVideo Remote Denial of Service Vulnerability

QQ is a very popular IM in China developed by Tencent.There exists a remote denial of service vulnerability in QQ when using the SuperVideo chat.Current study showed that the attacker who successfully exploited the vulnerability would cause the remote client crash. There is an attack packet as...

CVE-2006-6500

Heap-based buffer overflow in Mozilla Firefox 2.x before 2.0.0.1, 1.5.x before 1.5.0.9, Thunderbird before 1.5.0.9, and SeaMonkey before 1.0.7 allows remote attackers to cause a denial of service crash and possibly execute arbitrary code by setting the CSS cursor to certain images that cause an...

ImageMagick Sun Bitmap图象文件远程缓冲区溢出漏洞

ImageMagick是一套可以用来读、写和处理超过89种基本格式的图片文件。 ImageMagick处理SUN Bitmap图象文件存在问题，远程攻击者可以利用漏洞进行缓冲区溢出攻击，可能以进程权限执行任意指令。 攻击者可以构建恶意SUN Bitmap图象，诱使用户使用ImageMagick打开来触发，目前没有详细漏洞细节提供。 RedHat Enterprise Linux WS 4 RedHat Enterprise Linux WS 3 RedHat Enterprise Linux WS 2.1 IA64 RedHat Enterprise Linux WS 2.1 RedHa...

CVE-2006-6288

Multiple buffer overflows in Niek Albers CoolPlayer 216 and earlier allow remote attackers to execute arbitrary code via 1 a playlist file with long song names, because of an overflow in the CPLAddPrefixedFile function in CPIPlaylist.c; 2 a skin file with long button names, because of an overflow...

Microsoft Windows Media Player畸形位图文件处理堆溢出漏洞（MS06-005）

Microsoft Windows Media Player是一款非常流行的媒体播放器。 Microsoft Windows Media Player在处理畸形的位图文件时存在漏洞，攻击者可能利用此漏洞在用户机器上执行任意指令。 Windows Media Player可以播放位图格式文件（如.bmp文件）并解码bmp文件，但没有正确地处理声明大小为0的bmp文件。在这种情况下，WMP会分配大小为0的堆，但实际上会以实际文件长度拷贝数据到这个堆，因此声明大小为0的bmp文件会导致溢出。攻击者可以通过诱骗用户使用Windows Media Player打开特制的位图文件导致执行任意指令。...

Debian DSA-1168-1 : imagemagick - several vulnerabilities

Several remote vulnerabilities have been discovered in Imagemagick, a collection of image manipulation tools, which may lead to the execution of arbitrary code. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2006-2440 Eero Hakkinen discovered that the...

GLSA-200609-14 : ImageMagick: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200609-14 ImageMagick: Multiple Vulnerabilities Tavis Ormandy of the Google Security Team discovered a stack and heap buffer overflow in the GIMP XCF Image decoder and multiple heap and integer overflows in the SUN bitmap decoder...