16 matches found
EUVD-2016-8031
Malware in sbrugna...
EUVD-2016-5781
Malware in sbrugna...
EUVD-2022-29664
Malicious code in bioql PyPI...
BIT-PILLOW-2020-10994
In libImaging/Jpeg2KDecode.c in Pillow before 7.1.0, there are multiple out-of-bounds reads via a crafted JP2 file...
Design/Logic Flaw
This vulnerability allows remote attackers to disclose sensitive information on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...
CVE-2022-42415
This vulnerability allows remote attackers to execute arbitrary code on affected installations of PDF-XChange Editor. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...
JasPer 代码问题漏洞
JasPer is an open source project that aims to provide a free software-based reference implementation of the codecs specified in the JPEG-2000 Part-1 standard. A null pointer dereference vulnerability exists in versions of Jasper prior to 2.0.26. The vulnerability stems from a problem with the way...
CVE-2019-5144
An exploitable heap underflow vulnerability exists in the derivetapsandgains function in kduv7ar.dll of Kakadu Software SDK 7.10.2. A specially crafted jp2 file can cause a heap overflow, which can result in remote code execution. An attacker could provide a malformed file to the victim to trigge...
CVE-2016-4797
Divide-by-zero vulnerability in the opjtcdinittile function in tcd.c in OpenJPEG before 2.1.1 allows remote attackers to cause a denial of service application crash via a crafted jp2 file. NOTE: this issue exists because of an incorrect fix for CVE-2014-7947...
CVE-2016-4797
Divide-by-zero vulnerability in the opjtcdinittile function in tcd.c in OpenJPEG before 2.1.1 allows remote attackers to cause a denial of service application crash via a crafted jp2 file. NOTE: this issue exists because of an incorrect fix for CVE-2014-7947...
CVE-2016-7163
Integer overflow in the opjpicreatedecode function in pi.c in OpenJPEG allows remote attackers to execute arbitrary code via a crafted JP2 file, which triggers an out-of-bounds read or write...
CVE-2016-7163
Integer overflow in the opjpicreatedecode function in pi.c in OpenJPEG allows remote attackers to execute arbitrary code via a crafted JP2 file, which triggers an out-of-bounds read or write...
CVE-2016-7163
OpenJPEG vulnerability CVE-2016-7163 is caused by an integer overflow in opj_pi_create_decode (pi.c), enabling crafted JP2 files to trigger out-of-bounds read/write and potentially execute arbitrary code. Affected: OpenJPEG library across multiple platforms; root cause and impact summarized in li...
Heap overflow
Multiple off-by-one errors in the 1 jpcdeccpsetfromcox and 2 jpcdeccpsetfromrgn functions in jpc/jpcdec.c in JasPer 1.900.1 and earlier allow remote attackers to execute arbitrary code via a crafted jp2 file, which triggers a heap-based buffer overflow...
CVE-2010-3787
Heap-based buffer overflow in QuickTime in Apple Mac OS X 10.6.x before 10.6.5 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted JP2 image...
CVE-2010-0505
Heap-based buffer overflow in ImageIO in Apple Mac OS X before 10.6.3 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted JP2 JPEG2000 image, related to incorrect calculation and the CGImageReadGetBytesAtOffset function...