RHEL 5 : qffmpeg (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - qffmpeg: Invalid free in libavcodec/shorten.c due to invalid channel count CVE-2013-0873 - qffmpeg: out o...

PHP exif Extension exif_read_data NULL Pointer Dereference (CVE-2015-0232)

A code execution vulnerability exists in PHP's exif extension. The vulnerability is due to a NULL Pointer dereference inside the exifreaddata function. A remote attacker can exploit this vulnerability by sending crafted picture data to a web application running a vulnerable version of PHP...

PHP exif Extension exif_ifd_make_value Thumbnail Heap Buffer Overflow (CVE-2014-3670)

A code execution vulnerability exists in PHP exif extension. The vulnerability is due to a buffer overflow when handles exif thumbnail. A remote attacker can exploit the vulnerability by sending crafted picture data to a web application running a vulnerable version of PHP...

DEBIAN-CVE-2013-0860

The fferframeend function in libavcodec/errorresilience.c in FFmpeg before 1.0.4 and 1.1.x before 1.1.1 does not properly verify that a frame is fully initialized, which allows remote attackers to trigger a NULL pointer dereference via crafted picture data...

CVE-2013-0860

The fferframeend function in libavcodec/errorresilience.c in FFmpeg before 1.0.4 and 1.1.x before 1.1.1 does not properly verify that a frame is fully initialized, which allows remote attackers to trigger a NULL pointer dereference via crafted picture data...