11 matches found
Astra Linux - уязвимость в gdk-pixbuf
In GNOME GdkPixbuf also known as gdk-pixbuf up to version 2.42.10, the ANI decoder used for Windows animated cursors encounters heap memory corruption when parsing chunks from a crafted .ani file. A crafted file could allow an attacker to overwrite heap metadata, resulting in a denial-of-service...
EUVD-2017-6079
Malware in sbrugna...
EulerOS 2.0 SP9 : gdk-pixbuf2 (EulerOS-SA-2024-2828)
According to the versions of the gdk-pixbuf2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In GNOME GdkPixbuf aka gdk-pixbuf through 2.42.10, the ANI Windows animated cursor decoder encounters heap memory corruption in aniloadchunk ...
AZL-34726 CVE-2022-48622 affecting package gdk-pixbuf2 for versions less than 2.42.10-2
In GNOME GdkPixbuf aka gdk-pixbuf through 2.42.10, the ANI Windows animated cursor decoder encounters heap memory corruption in aniloadchunk in io-ani.c when parsing chunks in a crafted .ani file. A crafted file could allow an attacker to overwrite heap metadata, leading to a denial of service or...
PT-2024-5877 · Unknown +9 · Gdk-Pixbuf +9
Name of the Vulnerable Software and Affected Versions: GdkPixbuf versions through 2.42.10 Description: The issue is related to heap memory corruption in the ANI decoder when parsing chunks in a crafted .ani file. This corruption can occur in the ani load chunk function and may allow an attacker t...
CVE-2017-14578
IrfanView 4.44 - 32bit allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .ani file, related to "Data from Faulting Address controls Branch Selection starting at ntdll77130000!RtlpCoalesceFreeBlocks+0x00000000000004b4."...
Design/Logic Flaw
IrfanView 4.44 - 32bit allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .ani file, related to "Data from Faulting Address controls Branch Selection starting at ntdll77130000!RtlpCoalesceFreeBlocks+0x00000000000004b4."...
CVE-2017-14578
IrfanView 4.44 - 32bit allows attackers to cause a denial of service or possibly have unspecified other impact via a crafted .ani file, related to "Data from Faulting Address controls Branch Selection starting at ntdll77130000!RtlpCoalesceFreeBlocks+0x00000000000004b4."...
CVE-2007-1867
Buffer overflow in IrfanView 3.99 allows remote attackers to execute arbitrary code via a crafted animated cursor ANI file...
Buffer overflow
Buffer overflow in IrfanView 3.99 allows remote attackers to execute arbitrary code via a crafted animated cursor ANI file...
irfanview-ani.txt
/ IrfanView 3.99 .ANI File Buffer Overflow IrfanView is vulnerable to a buffer overflow when opening a crafted .ani file. The overflow occurs while it is creating a snapshot of the file. This exploit launches calc.exe. Tested against Win XP SP2 FR. Have Fun! Coded and discovered by Marsu Note: th...