CVE-2017-18197

In mxGraphViewImageReader.java in mxGraph before 3.7.6, the SAXParserFactory instance in convert is missing flags to prevent XML External Entity XXE attacks, as demonstrated by /ServerView...

OpenJPEG Buffer Overflow Vulnerability (CNVD-2017-38123)

OpenJPEG is a C-based open source JPEG 2000 codec . A stack buffer overflow vulnerability exists in the 'pgxtovolume' function in the jp3d/convert.c file in OpenJPEG version 2.3.0. A remote attacker could exploit this vulnerability to cause a denial of service or possibly execute code write acros...

OpenJPEG Buffer Overflow Vulnerability (CNVD-2017-38122)

OpenJPEG is a C-based open source JPEG 2000 codec . A buffer overflow vulnerability exists in the 'pgxtoimage' function of the jpwl/convert.c file in OpenJPEG version 2.3.0. A remote attacker could exploit this vulnerability to cause a denial of service or possibly execute code...

CVE-2017-17480

In OpenJPEG 2.3.0, a stack-based buffer overflow was discovered in the pgxtovolume function in jp3d/convert.c. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution...

ALPINE-CVE-2017-17480

In OpenJPEG 2.3.0, a stack-based buffer overflow was discovered in the pgxtovolume function in jp3d/convert.c. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution...

DEBIAN-CVE-2017-17479

In OpenJPEG 2.3.0, a stack-based buffer overflow was discovered in the pgxtoimage function in jpwl/convert.c. The vulnerability causes an out-of-bounds write, which may lead to remote denial of service or possibly remote code execution...

SWFTools Denial of Service Vulnerability (CNVD-2017-37437)

SWFTools is a utility toolset for working with Adobe Flash files SWF files. A security vulnerability exists in the 'wavconvert2mono' function in the lib/wav.c file in SWFTools version 0.9.2, which stems from the program's failure to properly restrict multiplication in malloc calls. The...

Exe2Image - A simple utility to convert EXE files to JPEG images and vice versa.

A simple utility to convert EXE files to PNG images and vice versa. Putty.exe converted to an image. Download Exe2Image...

How to Capture a Memory Dump from a Provisioned Target in VMware Environment

This article outlines the process to generate a memory dump file from a provisioned target device in a VMware environment, thenusing vmss2core tool convert snapshot to .dmp file, which can be analyzed in windbg. This is a three-step process of which neither steps require any modification to the...

UBUNTU-CVE-2017-14650

A Remote Code Execution vulnerability has been found in the HordeImage library when using the "Im" backend that utilizes ImageMagick's "convert" utility. It's not exploitable through any Horde application, because the code path to the vulnerability is not used by any Horde code. Custom applicatio...

DEBIAN-CVE-2017-14650

A Remote Code Execution vulnerability has been found in the HordeImage library when using the "Im" backend that utilizes ImageMagick's "convert" utility. It's not exploitable through any Horde application, because the code path to the vulnerability is not used by any Horde code. Custom applicatio...

OpenJPEG Stack Buffer Overflow Vulnerability

OpenJPEG is a C-based open source JPEG 2000 codec . A stack buffer overflow vulnerability exists in the 'pgxtoimage' function in the bin/jp2/convert.c file in OpenJPEG version 2.2.0. A remote attacker could exploit this vulnerability to cause a denial of service or possibly execute code write...

OpenJPEG Memory Corruption Vulnerability

OpenJPEG is a C-based open source JPEG 2000 codec . A security vulnerability exists in the bin/jp2/convert.c file in OpenJPEG version 2.2.0. A remote attacker could exploit this vulnerability to cause a denial of service crash...

UBUNTU-CVE-2017-14040

An invalid write access was discovered in bin/jp2/convert.c in OpenJPEG 2.2.0, triggering a crash in the tgatoimage function. The vulnerability may lead to remote denial of service or possibly unspecified other impact...

ALPINE-CVE-2017-14040

An invalid write access was discovered in bin/jp2/convert.c in OpenJPEG 2.2.0, triggering a crash in the tgatoimage function. The vulnerability may lead to remote denial of service or possibly unspecified other impact...

CVE-2017-11639

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WriteCIPImage function in coders/cip.c, related to the GetPixelLuma function in MagickCore/pixel-accessor.h...

CVE-2017-11639

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WriteCIPImage function in coders/cip.c, related to the GetPixelLuma function in MagickCore/pixel-accessor.h...

CVE-2017-11639

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WriteCIPImage function in coders/cip.c, related to the GetPixelLuma function in MagickCore/pixel-accessor.h...

CVE-2017-11640

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to an address access exception in the WritePTIFImage function in coders/tiff.c...

CVE-2017-11644

When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the ReadMATImage function in coders/mat.c...