Security Bulletin: Vulnerability in Apache Commons Codec affects IBM Cúram Social Program Management (177835)

Summary IBM Cúram Social Program Management uses Apache Commons Codec libraries, for which there is a publicly known vulnerability. Apache Commons Codec could allow a remote attacker to obtain sensitive information, caused by the improper validation of input. An attacker could exploit this...

Security Bulletin: Vulnerability in Apache Commons Codec affects IBM Operations Analytics Predictive Insights

Summary Apache Commons Codec is used by IBM Operations Analytics Predictive Insights. Apache Commons Codec vulnerability 177835 could allow a remote attacker to obtain sensitive information, caused by the improper validation of input. This vulnerability affects IBM Operations Analytics Predictive...

Security Bulletin: Vulnerability in Apache Commons Codec affects Netcool/OMNIbus CEM Gateway and ServiceNow Gateway

Summary Netcool/OMNIbus CEM Gateway and ServiceNow Gateway are vulnerable to remote attack to obtain sensitive info by exploiting the weakness in Apache Commons Codec. CVE-177835 Vulnerability Details Third Party Entry: 177835 DESCRIPTION: Apache Commons Codec information disclosure CVSS Base...

Security Bulletin: IBM Tivoli Netcool Impact is affected by an Apache Commons Codec vulnerability

Summary IBM Tivoli Netcool Impact has addressed the following Apache Commons Codec vulnerability. Vulnerability Details Third Party Entry: 177835 DESCRIPTION: Apache Commons Codec information disclosure CVSS Base score: 7.5 CVSS Temporal Score: See:...

Security Bulletin: Apache Commons Codec Vulnerability Affects IBM Control Center

Summary Apache Commons Codec could allow a remote attacker to obtain sensitive information, caused by the improper validation of input. Vulnerability Details Third Party Entry: 177835 DESCRIPTION: Apache Commons Codec information disclosure CVSS Base score: 7.5 CVSS Temporal Score: See:...

The vulnerability of the Camera Codec Pack component of the Windows operating system allows a hacker to execute arbitrary code.

The vulnerability of the Camera Codec Pack component of the Windows operating system is related to errors in object handling in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code in the context of the current user, using a specially created file...

ffmpeg:ffmpeg_AV_CODEC_ID_SONIC_fuzzer: Heap-buffer-overflow in av_freep

Project: https://git.ffmpeg.org/ffmpeg.git Detailed Report: https://oss-fuzz.com/testcase?key=5172961169113088 Project: ffmpeg Fuzzing Engine: libFuzzer Fuzz Target: ffmpegAVCODECIDSONICfuzzer Job Type: libfuzzerasanffmpeg Platform Id: linux Crash Type: Heap-buffer-overflow READ 8 Crash Address:...

USN-4497-1: OpenJPEG vulnerabilities

It was discovered that OpenJPEG incorrectly handled certain image files. A remote attacker could possibly use this issue to cause a denial of service. CVE-2016-9112 It was discovered that OpenJPEG did not properly handle certain input. If OpenJPEG were supplied with specially crafted input, it...

Apache ActiveMQ Remote Code Execution Vulnerability

Apache ActiveMQ is the United States Apache Apache Software Foundation of a set of open source messaging middleware , which supports Java messaging services , clustering , Spring Framework and so on. A code execution vulnerability exists in Apache ActiveMQ version 5.15.13. The vulnerability stems...

CVE-2020-25278

An issue was discovered on Samsung mobile devices with O8.x, P9.0, and Q10.0 software. The Quram image codec library allows attackers to overwrite memory and execute arbitrary code via crafted JPEG data that is mishandled during decoding. The Samsung IDs are SVE-2020-18088, SVE-2020-18225,...

Code injection

An issue was discovered on Samsung mobile devices with O8.x, P9.0, and Q10.0 software. The Quram image codec library allows attackers to overwrite memory and execute arbitrary code via crafted JPEG data that is mishandled during decoding. The Samsung IDs are SVE-2020-18088, SVE-2020-18225,...

CVE-2020-25278

An issue was discovered on Samsung mobile devices with O8.x, P9.0, and Q10.0 software. The Quram image codec library allows attackers to overwrite memory and execute arbitrary code via crafted JPEG data that is mishandled during decoding. The Samsung IDs are SVE-2020-18088, SVE-2020-18225,...

CVE-2020-0997

A remote code execution vulnerability exists when the Windows Camera Codec Pack improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user...

CVE-2020-0997

A remote code execution vulnerability exists when the Windows Camera Codec Pack improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user...

Remote code execution

A remote code execution vulnerability exists when the Windows Camera Codec Pack improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user...

CVE-2020-0997

CVE-2020-0997 is a Windows Camera Codec Pack remote code execution vulnerability caused by improper handling of objects in memory. An attacker could execute arbitrary code in the context of the current user, potentially taking control if the user has admin rights. Exploitation requires the user t...

CVE-2020-0997 Windows Camera Codec Pack Remote Code Execution Vulnerability

...

Microsoft Windows Camera Codec Pack Image Processing Out-Of-Bounds Write Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Microsoft Windows. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the camera codec...

Windows Camera Codec Pack Remote Code Execution Vulnerability

A remote code execution vulnerability exists when the Windows Camera Codec Pack improperly handles objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is logged on with administrative user...

Security Bulletin: Vulnerability in Apache Commons Codec affects IBM WebSphere Service Registry and Repository

Summary A potential information disclosure vulnerability in Apache Commons Codec affects IBM WebSphere Service Registry and Repository. Vulnerability Details Third Party Entry: 177835 DESCRIPTION: Apache Commons Codec information disclosure CVSS Base score: 7.5 CVSS Temporal Score: See:...