21 matches found
CVE-2018-25267 UltraISO 9.7.1.3519 Buffer Overflow via Output FileName
UltraISO 9.7.1.3519 contains a local buffer overflow vulnerability in the Output FileName field of the Make CD/DVD Image dialog that allows attackers to overwrite SEH and SE handler records. Attackers can craft a malicious filename string with 304 bytes of data followed by SEH record overwrite...
DEBIAN-CVE-2026-26284
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, ImageMagick lacks proper boundary checking when processing Huffman-coded data from PCD Photo CD files. The decoder contains an function that has an incorrect...
CVE-2026-26284
CVE-2026-26284 affects ImageMagick. The vulnerability arises in the PSD/PCD data handling path where the Huffman-coded data from PCD files is processed without proper boundary checks, causing an out-of-bounds read due to an incorrect initialization in the decoder. A patch is provided for versions...
Cleanersoft Free MP3 CD Ripper has security vulnerabilities
Cleanersoft Free MP3 CD Ripper is a track extraction software developed by Cleanersoft Corporation. Version 2.8 of Cleanersoft Free MP3 CD Ripper contains a security vulnerability. This vulnerability arises from malicious WAV files that may cause stack buffer overflows, potentially allowing...
The vulnerability of the SCSI CD/DVD Device Emulation mode in VMware Fusion and Vmware Workstation allows a hacker to execute arbitrary code.
The vulnerability of the SCSI CD/DVD Device Emulation mode in VMware Fusion and Vmware Workstation lies in the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code...
SUSE CVE-2004-1190
SUSE Linux before 9.1 and SUSE Linux Enterprise Server before 9 do not properly check commands sent to CD devices that have been opened read-only, which could allow local users to conduct unauthorized write activities to modify the firmware of associated SCSI devices...
SUSE CVE-2007-6613
Stack-based buffer overflow in the printiso9660recurse function in iso-info src/iso-info.c in GNU Compact Disc Input and Control Library libcdio 0.79 and earlier allows context-dependent attackers to cause a denial of service core dump and possibly execute arbitrary code via a disk or image that...
The vulnerability of the CD-ROM driver of the Microsoft Windows operating system, which allows a hacker to increase their privileges
The vulnerability of the Microsoft Windows operating system’s CD-ROM driver is related to insecure management of privileges. Exploiting this vulnerability can allow an attacker to enhance their privileges...
Multiple vulnerabilities exist in the functions cdio_log_handler (modules/access/cdda/access.c) of the CDDA plugin (libcdda_plugin), and in the cdio_log_handler and vcd_log_handler functions (modules/access/vcdx/access.c) of the VCDX plugin (libvcdx_plugin). These vulnerabilities allow an attacker to execute arbitrary code.
Multiple vulnerabilities exist in the functions cdiologhandler modules/access/cdda/access.c of the CDDA plugin libcddaplugin, and in the cdiologhandler and vcdloghandler functions modules/access/vcdx/access.c of the VCDX plugin libvcdxplugin of the VideoLAN VLC media player software. These...
USN-3820-1 linux, linux-aws, linux-azure, linux-gcp, linux-kvm, linux-oem, linux-raspi2 vulnerabilities
Felix Wilhelm discovered that the Xen netback driver in the Linux kernel did not properly perform input validation in some situations. An attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2018-15471 It was discovered that the generic SCSI...
[SECURITY] Fedora 20 Update: libkcompactdisc-4.14.1-1.fc20
A KDE compact disc library...
'libcdio' 0.7x GNU Compact Disc Input and Control Library Buffer Overflow Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/27131/info The GNU Compact Disc Input and Control Library 'libcdio' is prone to multiple buffer-overflow vulnerabilities because it fails to perform adequate boundary checks on user-supplied data. The issues occur when th...
[SECURITY] Fedora 17 Update: libkcompactdisc-4.10.5-1.fc17
A KDE compact disc library...
Fedora Update for libkcompactdisc FEDORA-2013-10182
Check for the Version of libkcompactdisc OpenVAS Vulnerability Test Fedora Update for libkcompactdisc FEDORA-2013-10182 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modif...
[SECURITY] Fedora 17 Update: libkcompactdisc-4.10.4-1.fc17
A KDE compact disc library...
Fedora Update for libkcompactdisc FEDORA-2013-10130
Check for the Version of libkcompactdisc OpenVAS Vulnerability Test Fedora Update for libkcompactdisc FEDORA-2013-10130 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modif...
[SECURITY] Fedora 18 Update: libkcompactdisc-4.10.4-1.fc18
A KDE compact disc library...
[SECURITY] Fedora 19 Update: libkcompactdisc-4.10.4-1.fc19
A KDE compact disc library...
Winamp IN_CDDA.dll Buffer Overflow (CVE-2004-1119)
Winamp is a very popular multimedia player, produced by NullSoft, which is capable of playing many formats of audio and video files. One of the audio formats supported by Winamp is Compact-Disc-Digital-Audio CDDA, which is the format used on standard audio Compact Discs CD. When an audio CD is...
security flaw
Buffer overflow in the ISO9660 file system component for Linux kernel 2.4.x, 2.5.x and 2.6.x, allows local users with physical access to overflow kernel memory and execute arbitrary code via a malformed CD containing a long symbolic link entry...