Lucene search
K

9 matches found

CloudLinux
CloudLinux
added 2026/05/02 1:3 a.m.8 views

file: Fix of CVE-2019-18218

CVE-2019-18218: fix heap-based buffer overflow in cdfreadpropertyinfo...

7.8CVSS7.3AI score0.0185EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : file-5.33-20.el8 (AXSA:2021-2595:03)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-2595:03 advisory. file: heap-based buffer overflow in cdfreadpropertyinfo in cdf.c CVE-2019-18218 Tenable has extracted the preceding description block directly from the...

7.8CVSS8.7AI score0.0185EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:7 a.m.4 views

SUSE CVE-2019-18218

cdfreadpropertyinfo in cdf.c in file through 5.37 does not restrict the number of CDFVECTOR elements, which allows a heap-based buffer overflow 4-byte out-of-bounds write...

9.8CVSS8.9AI score0.0185EPSS
Exploits1References59
OSV
OSV
added 2021/06/02 4:15 p.m.2 views

DEBIAN-CVE-2009-0947

Multiple integer overflows in the 1 cdfreadpropertyinfo and 2 cdfreadsat functions in file before 5.02...

9.8CVSS8.6AI score0.0114EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2016/07/06 12:0 a.m.5 views

Vulnerability of PHP software, allowing a malicious actor to compromise the accessibility of protected information

A vulnerability exists in the cdfreadpropertyinfo function of the Fileinfo component’s file in PHP, due to improper flow control. Exploitation of this vulnerability allows malicious actors to cause a service failure abnormal termination of the application by using specially crafted CDF files...

4.3CVSS7.4AI score0.14927EPSS
Exploits0References4Affected Software1
RedHat Linux
RedHat Linux
added 2016/05/10 6:32 p.m.5 views

file: incomplete fix for CVE-2012-1571 in cdf_read_property_info

It was found that the fix for CVE-2012-1571 was incomplete; the File Information fileinfo extension did not correctly parse certain Composite Document Format CDF files. A remote attacker could use this flaw to crash a PHP application using fileinfo via a specially crafted CDF file...

6.5CVSS7.4AI score0.20237EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2014/10/30 7:45 p.m.5 views

file: incomplete fix for CVE-2012-1571 in cdf_read_property_info

It was found that the fix for CVE-2012-1571 was incomplete; the File Information fileinfo extension did not correctly parse certain Composite Document Format CDF files. A remote attacker could use this flaw to crash a PHP application using fileinfo via a specially crafted CDF file...

6.5CVSS7.2AI score0.20237EPSS
Exploits2References4
RedHat Linux
RedHat Linux
added 2014/09/30 9:9 a.m.2 views

file: incomplete fix for CVE-2012-1571 in cdf_read_property_info

It was found that the fix for CVE-2012-1571 was incomplete; the File Information fileinfo extension did not correctly parse certain Composite Document Format CDF files. A remote attacker could use this flaw to crash a PHP application using fileinfo via a specially crafted CDF file...

6.5CVSS7.2AI score0.20237EPSS
Exploits2References4
OSV
OSV
added 2014/07/09 12:0 a.m.3 views

UBUNTU-CVE-2014-3487

The cdfreadpropertyinfo function in file before 5.19, as used in the Fileinfo component in PHP before 5.4.30 and 5.5.x before 5.5.14, does not properly validate a stream offset, which allows remote attackers to cause a denial of service application crash via a crafted CDF file...

4.3CVSS7.2AI score0.14927EPSS
Exploits0References5
Rows per page
Query Builder