15 matches found
EUVD-2026-36182
ImageMagick Vulnerable to Stack Overflow in its MVG Decoder...
CVE-2025-50129
A memory corruption vulnerability exists in the PCX Image Decoding functionality of the SAIL Image Decoding Library v0.9.8. When decoding the image data from a specially crafted .tga file, a heap-based buffer overflow can occur which allows for remote code execution. An attacker will need to...
The vulnerability of the CADImage plugin in the IrfanView software, which is used for viewing and playing graphic, video, and audio files, allows a hacker to execute arbitrary code.
The vulnerability of the CADImage plugin for viewing and playing graphic, video, and audio files in IrfanView arises from the execution of an operation beyond the buffer boundaries in memory. Exploiting this vulnerability allows a malicious actor to execute arbitrary code using a specially crafte...
PT-2024-39441 · Faststone · Faststone Image Viewer
Name of the Vulnerable Software and Affected Versions: FastStone Image Viewer affected versions not specified Description: This issue allows remote attackers to execute arbitrary code on affected installations of FastStone Image Viewer. User interaction is required to exploit this issue, where th...
Sunlight CMS Security Vulnerability
Sunlight CMS is a content management system from Sunlight CMS open source. A security vulnerability exists in Sunlight CMS version 8.0.1. An attacker exploited the vulnerability to escalate privileges via a specially crafted SVG file in the File Manager component...
PT-2024-19698 · Unknown · A-Blog Cms
Name of the Vulnerable Software and Affected Versions: a-blog cms versions prior to 3.1.7 a-blog cms versions prior to 3.0.29 a-blog cms versions prior to 2.11.58 a-blog cms versions prior to 2.10.50 a-blog cms version 2.9.0 and earlier Description: The issue is related to improper input...
SUSE CVE-2015-8897
The SpliceImage function in MagickCore/transform.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service application crash via a crafted png file...
UBUNTU-CVE-2022-26061
A heap-based buffer overflow vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...
SAP 3D Visual Enterprise Viewer 安全漏洞
SAP 3D Visual Enterprise Viewer is a free 3D visualization viewer for Windows. A denial of service vulnerability exists in SAP 3D Visual Enterprise Viewer 9. The vulnerability stems from improper input validation. An attacker could exploit the vulnerability by means of a specially crafted .CGM...
CVE-2020-24414
Adobe Illustrator version 24.1.2 and earlier is affected by a memory corruption vulnerability that occurs when parsing a specially crafted .svg file. This could result in arbitrary code execution in the context of the current user. This vulnerability requires user interaction to exploit...
The vulnerability of the GIF-decoding function `gdImageCreateFromGifCtx` in the `libgd2` library for creating and working with programmable graphics allows a perpetrator to compromise confidential information.
The vulnerability of the GIF-decoding function gdImageCreateFromGifCtx gdgifin.c in the library for creating and working with programmable graphics, libgd2, is related to the lack of cleanup of allocated color buffer spaces before their use. Exploiting this vulnerability could allow an attacker t...
DEBIAN-CVE-2017-17914
In ImageMagick 7.0.7-16 Q16, a vulnerability was found in the function ReadOnePNGImage in coders/png.c, which allows attackers to cause a denial of service ReadOneMNGImage large loop via a crafted mng image file...
ImageMagick 'read_user_chunk_callback' memory leak vulnerability
ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A memory disclosure vulnerability exists in the 'readuserchunkcallback' function of the coders\png.c file in the...
OpenJDK GIF processing buffer overflow vulnerability (6804998)
Buffer overflow in Java SE Development Kit JDK and Java Runtime Environment JRE 5.0 Update 17 and earlier; 6 Update 12 and earlier; 1.4.219 and earlier; and 1.3.124 and earlier allows remote attackers to access files or execute arbitrary code via a crafted GIF image, aka CR 6804998...
PT-2008-4372 · Mozilla · Firefox
Name of the Vulnerable Software and Affected Versions: Mozilla Firefox versions 3.0 through 3.0 Description: The issue allows remote attackers to cause a denial of service, resulting in an application crash, or possibly execute arbitrary code via a crafted GIF file. This is triggered by a free of...