Lucene search
K

20 matches found

Cvelist
Cvelist
added 2026/03/26 8:0 p.m.33 views

CVE-2026-2272 Gimp: gimp: memory corruption due to integer overflow in ico file handling

A flaw was found in GIMP. An integer overflow vulnerability exists when processing ICO image files, specifically in the icoreadinfo and icoreadicon functions. This issue arises because a size calculation for image buffers can wrap around due to a 32-bit integer evaluation, allowing oversized imag...

4.3CVSS0.00838EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-7054

Malware in sbrugna...

7.8CVSS7.7AI score0.00975EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 3:19 p.m.9 views

CVE-2020-23889

A User Mode Write AV starting at Editor!TMethodImplementationIntercept+0x4189c6 of WildBit Viewer v6.6 allows attackers to cause a denial of service DoS via a crafted ico file...

5.5CVSS6.7AI score0.00642EPSS
Exploits1
SUSE CVE
SUSE CVE
added 2023/08/30 2:19 a.m.1 views

SUSE CVE-2020-24292

Buffer Overflow vulnerability in load function in PluginICO.cpp in FreeImage 3.19.0 r1859 allows remote attackers to run arbitrary code via opening of crafted ico file...

8.8CVSS7.6AI score0.01158EPSS
Exploits1References3
UbuntuCve
UbuntuCve
added 2023/08/22 7:16 p.m.17 views

CVE-2020-24292

Buffer Overflow vulnerability in load function in PluginICO.cpp in FreeImage 3.19.0 r1859 allows remote attackers to run arbitrary code via opening of crafted ico file...

8.8CVSS7.4AI score0.01158EPSS
Exploits1References2
Prion
Prion
added 2023/08/22 7:16 p.m.20 views

Buffer overflow

Buffer Overflow vulnerability in load function in PluginICO.cpp in FreeImage 3.19.0 r1859 allows remote attackers to run arbitrary code via opening of crafted ico file...

6.8CVSS8.7AI score0.01158EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2021/11/10 10:15 p.m.4 views

CVE-2020-23889

A User Mode Write AV starting at Editor!TMethodImplementationIntercept+0x4189c6 of WildBit Viewer v6.6 allows attackers to cause a denial of service DoS via a crafted ico file...

5.5CVSS6.1AI score0.00642EPSS
Exploits1References2
NVD
NVD
added 2021/11/10 10:15 p.m.20 views

CVE-2020-23889

A User Mode Write AV starting at Editor!TMethodImplementationIntercept+0x4189c6 of WildBit Viewer v6.6 allows attackers to cause a denial of service DoS via a crafted ico file...

5.5CVSS0.00642EPSS
Exploits1References2
Prion
Prion
added 2021/11/10 10:15 p.m.22 views

Design/Logic Flaw

XnView MP v0.96.4 was discovered to contain a heap overflow which allows attackers to cause a denial of service DoS via a crafted ico file. Related to a Read Access Violation starting at USER32!SmartStretchDIBits+0x33...

4.3CVSS5.6AI score0.00697EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2021/11/10 9:26 p.m.54 views

CVE-2020-23889

WildBit Viewer vulnerability CVE-2020-23889 affects version 6.6. A Type: user-mode write access violation arises from Editor!TMethodImplementationIntercept+0x4189c6 when processing a crafted ICO file, leading to a denial of service. The report(s) in multiple feeds (NVD, Red Hat, CNVD, CNVD-derive...

5.5CVSS5.3AI score0.00642EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2021/11/10 9:25 p.m.48 views

CVE-2020-23887

XnView MP v0.96.4 is affected by a heap-based buffer overflow that can be triggered by a crafted ICO file, leading to a denial of service. The issue is described as a Read Access Violation beginning at USER32!SmartStretchDIBits+0x33. Connected sources confirm the vulnerability in XnView MP, but d...

5.5CVSS5.5AI score0.00697EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2020/05/06 1:15 p.m.3 views

CVE-2020-6082

An exploitable out-of-bounds write vulnerability exists in the icoread function of the igcore19d.dll library of Accusoft ImageGear 19.6.0. A specially crafted ICO file can cause an out-of-bounds write, resulting in a remote code execution. An attacker needs to provide a malformed file to the vict...

8.8CVSS6.1AI score0.03597EPSS
Exploits1References1
OSV
OSV
added 2018/08/08 12:29 a.m.3 views

CVE-2018-15174

XnView 2.45 allows remote attackers to cause a denial of service Read Access Violation at the Instruction Pointer and application crash or possibly have unspecified other impact via a crafted ICO file...

7.8CVSS5.9AI score0.00975EPSS
Exploits1References1
Prion
Prion
added 2018/08/08 12:29 a.m.20 views

Design/Logic Flaw

XnView 2.45 allows remote attackers to cause a denial of service Read Access Violation at the Instruction Pointer and application crash or possibly have unspecified other impact via a crafted ICO file...

6.8CVSS8AI score0.00975EPSS
Exploits1References1Affected Software1
Debian CVE
Debian CVE
added 2017/03/10 2:0 a.m.42 views

CVE-2017-6313

Integer underflow in the loadresources function in io-icns.c in gdk-pixbuf allows context-dependent attackers to cause a denial of service out-of-bounds read and program crash via a crafted image entry size in an ICO file...

7.1CVSS6.2AI score0.01935EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2017/02/27 3:49 p.m.28 views

CVE-2017-6313

Integer underflow in the loadresources function in io-icns.c in gdk-pixbuf allows context-dependent attackers to cause a denial of service out-of-bounds read and program crash via a crafted image entry size in an ICO file...

7.1CVSS4.9AI score0.01935EPSS
Exploits1References1
OSV
OSV
added 2017/01/13 4:59 p.m.1 views

ALPINE-CVE-2016-9811

The windowsicontypefind function in gst-plugins-base in GStreamer before 1.10.2, when GSLICE is set to always-malloc, allows remote attackers to cause a denial of service out-of-bounds read via a crafted ico file...

4.7CVSS6.7AI score0.02364EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2017/01/13 12:0 a.m.34 views

CVE-2016-9811

The windowsicontypefind function in gst-plugins-base in GStreamer before 1.10.2, when GSLICE is set to always-malloc, allows remote attackers to cause a denial of service out-of-bounds read via a crafted ico file...

4.7CVSS6.8AI score0.02364EPSS
Exploits0References3
Cvelist
Cvelist
added 2008/09/30 4:0 p.m.31 views

CVE-2008-4327

gdiplus.dll in GDI+ in Microsoft Windows XP SP3 does not properly handle crafted .ico files, which allows remote attackers to cause a denial of service divide-by-zero error and application crash via a certain crash.ico file on a web site, and allows user-assisted attackers to cause a denial of...

5.2AI score0.15719EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2004/09/15 3:27 p.m.5 views

security flaw

Integer overflow in the ICO image decoder for 1 gdk-pixbuf before 0.22 and 2 gtk2 before 2.2.4 allows remote attackers to cause a denial of service application crash via a crafted ICO file...

5CVSS5.9AI score0.05867EPSS
Exploits0References4
Rows per page
Query Builder