Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-4714

Malware in sbrugna...

5CVSS5.7AI score0.06637EPSS
Exploits1References21
SUSE CVE
SUSE CVE
added 2023/02/15 4:56 a.m.6 views

SUSE CVE-2016-9011

The wmfmalloc function in api.c in libwmf 0.2.8.4 allows remote attackers to cause a denial of service application crash via a crafted wmf file, which triggers a memory allocation failure...

5.5CVSS6.8AI score0.02612EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for libwmf (EulerOS-SA-2019-2623)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.9AI score0.02612EPSS
Exploits0References2
Prion
Prion
added 2017/03/23 6:59 p.m.19 views

Design/Logic Flaw

The wmfmalloc function in api.c in libwmf 0.2.8.4 allows remote attackers to cause a denial of service application crash via a crafted wmf file, which triggers a memory allocation failure...

4.3CVSS6.8AI score0.02612EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2017/03/23 6:59 p.m.3 views

UBUNTU-CVE-2016-9011

The wmfmalloc function in api.c in libwmf 0.2.8.4 allows remote attackers to cause a denial of service application crash via a crafted wmf file, which triggers a memory allocation failure...

5.5CVSS6.4AI score0.02612EPSS
Exploits0References6
CVE
CVE
added 2017/03/23 6:0 p.m.74 views

CVE-2016-9011

CVE-2016-9011 affects libwmf up to version 0.2.8.4, where the wmf_malloc function in api.c can fail memory allocation when processing a crafted WMF file. This can crash the targeted application (denial of service). The public description in the initial document specifies the vulnerability as a re...

5.5CVSS5.2AI score0.02612EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2015/07/09 10:43 p.m.8 views

SUSE-SU-2015:1378-1 Security update for libwmf

libwmf was updated to fix four security issues. These security issues were fixed: - CVE-2015-4588: Heap-based buffer overflow in the DecodeImage function allowed remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted 'run-length count' in an image in ...

6.8CVSS8.2AI score0.09221EPSS
Exploits3References9
CNVD
CNVD
added 2015/07/02 12:0 a.m.2 views

libwmf Denial of Service Vulnerability

libwmf is a library of functions for reading and converting WMF vector graphics. A denial of service vulnerability exists in libwmf 0.2.8.4, which allows remote attackers to cause a denial of service via a crafted "WMF" file...

5CVSS6.7AI score0.06637EPSS
Exploits1References1
NVD
NVD
added 2015/07/01 2:59 p.m.19 views

CVE-2015-4696

Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash via a crafted WMF file to the 1 wmf2gd or 2 wmf2eps command...

4.3CVSS5.3AI score0.05981EPSS
Exploits1References12
OSV
OSV
added 2015/07/01 2:59 p.m.7 views

CVE-2015-4696

Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash via a crafted WMF file to the 1 wmf2gd or 2 wmf2eps command...

6.2AI score
Exploits0References12
OSV
OSV
added 2015/07/01 2:59 p.m.7 views

CVE-2015-4695

meta.h in libwmf 0.2.8.4 allows remote attackers to cause a denial of service out-of-bounds read via a crafted WMF file...

6.1AI score
Exploits0References12
Prion
Prion
added 2015/07/01 2:59 p.m.18 views

Out-of-bounds

meta.h in libwmf 0.2.8.4 allows remote attackers to cause a denial of service out-of-bounds read via a crafted WMF file...

5CVSS6.7AI score0.06637EPSS
Exploits1References12Affected Software1
Debian CVE
Debian CVE
added 2015/07/01 2:0 p.m.36 views

CVE-2015-4695

meta.h in libwmf 0.2.8.4 allows remote attackers to cause a denial of service out-of-bounds read via a crafted WMF file...

5CVSS6.2AI score0.06637EPSS
Exploits1
Debian CVE
Debian CVE
added 2015/07/01 2:0 p.m.28 views

CVE-2015-4696

Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash via a crafted WMF file to the 1 wmf2gd or 2 wmf2eps command...

4.3CVSS6.3AI score0.05981EPSS
Exploits1
Check Point Advisories
Check Point Advisories
added 2010/03/22 12:0 a.m.49 views

Microsoft Windows WMF Handling Arbitrary Code Execution (CVE-2005-4560)

There exists a code execution vulnerability in Microsoft Windows. The vulnerability is created by unrestricted access to GDI functions through WMF files. An attacker can exploit this vulnerability to supply and execute arbitrary code through calling a specific GDI function via a crafted WMF file...

7.5CVSS7.5AI score0.86476EPSS
Exploits14
RedHat Linux
RedHat Linux
added 2009/04/30 8:24 p.m.3 views

libwmf: embedded gd use-after-free error

Use-after-free vulnerability in the embedded GD library in libwmf 0.2.8.4 allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted WMF file...

7.5CVSS6.7AI score0.03463EPSS
Exploits0References4
exploitpack
exploitpack
added 2007/02/25 12:0 a.m.18 views

Microsoft Office 2003 - Denial of Service

Microsoft Office 2003 - Denial of Service source: https://www.securityfocus.com/bid/22716/info Microsoft Office is prone to a denial-of-service condition when the malformed WMF file is viewed in an Office application. Exploiting this issue allows remote attackers to crash applications, denying...

7.3AI score
Exploits0
CVE
CVE
added 2006/08/10 1:0 a.m.65 views

CVE-2006-4071

CVE-2006-4071 affects Microsoft Windows XP and Windows Server 2003 (gdi32.dll). Vulnerable component: createBrushIndirect in GDI; root cause: sign extension issue that allows a crafted WMF file to crash the application (user-assisted DoS). Impact: denial of service via crash. Exploitation details...

2.6CVSS6.4AI score0.23995EPSS
Exploits1References13Affected Software2
Prion
Prion
added 2006/01/10 9:3 p.m.25 views

Integer overflow

An unspecified Microsoft WMF parsing application, as used in Internet Explorer 5.01 SP4 on Windows 2000 SP4, and 5.5 SP2 on Windows Millennium, and possibly other versions, allows attackers to cause a denial of service crash and possibly execute code via a crafted WMF file with a manipulated WMF...

9.3CVSS6.8AI score0.86476EPSS
Exploits15References11Affected Software1
Rows per page
Query Builder