22 matches found
EUVD-2021-13054
Malware in sbrugna...
EUVD-2021-13053
Malware in sbrugna...
FastStone Image Viewer <= 7.5 Multiple Vulnerabilities
The version of FastStone Image Viewer installed on the remote Windows host is prior to or equal to 7.5. It is, therefore, affected by multiple vulnerabilities: - Unsafe Parsing of a PNG tRNS chunk in FastStone Image Viewer through 7.5 results in a stack buffer overflow. CVE-2022-36947 - A user mo...
SAP 3D Visual Enterprise Author CUR File Parsing Use-After-Free Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of SAP 3D Visual Enterprise Author. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...
SAP 3D Visual Enterprise Author CUR File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of SAP 3D Visual Enterprise Author. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within th...
Unspecified vulnerability in FastStone Image Viewer (CNVD-2021-22947)
FastStone Image Viewer is a free image viewing, converting and editing tool. A security vulnerability exists in FSViewer.exe in FastStone Image Viewer 7.5 and earlier versions. An attacker can exploit this vulnerability via a malformed CUR file to cause a denial of service or code execution...
Unspecified Vulnerability in FastStone Image Viewer (CNVD-2021-22949)
FastStone Image Viewer is a free image viewing, converting and editing tool. FSViewer.exe in FastStone Image Viewer 7.5 and earlier versions is vulnerable. An attacker can exploit this vulnerability via a malformed CUR file to cause a denial of service or achieve code execution...
Unspecified Vulnerability in FastStone Image Viewer (CNVD-2021-22948)
FastStone Image Viewer is a free image viewing, converting and editing tool. A security vulnerability exists in FSViewer.exe in FastStone Image Viewer 7.5 and earlier versions. An attacker can exploit this vulnerability via a malformed CUR file to cause a denial of service or code execution...
FastStone Image Viewer Stack Buffer Overflow Vulnerability
FastStone Image Viewer is a free image viewing, converting and editing tool. A stack buffer overflow vulnerability exists in the CUR file parsing feature in FastStone Image Viewer 7.5 and earlier versions. The vulnerability can be exploited to execute arbitrary code via specially crafted CUR file...
CVE-2021-26237
FastStone Image Viewer = 7.5 is affected by a user mode write access violation at 0x00402d7d, triggered when a user opens or views a malformed CUR file that is mishandled by FSViewer.exe. Attackers could exploit this issue for a Denial of Service DoS or possibly to achieve code execution...
CVE-2021-26234
FastStone Image Viewer = 7.5 is affected by a user mode write access violation at 0x00402d8a, triggered when a user opens or views a malformed CUR file that is mishandled by FSViewer.exe. Attackers could exploit this issue for a Denial of Service DoS or possibly to achieve code execution...
Code injection
FastStone Image Viewer = 7.5 is affected by a user mode write access violation near NULL at 0x005bdfcb, triggered when a user opens or views a malformed CUR file that is mishandled by FSViewer.exe. Attackers could exploit this issue for a Denial of Service DoS or possibly to achieve code executio...
CVE-2021-26237
FastStone Image Viewer = 7.5 is affected by a user mode write access violation at 0x00402d7d, triggered when a user opens or views a malformed CUR file that is mishandled by FSViewer.exe. Attackers could exploit this issue for a Denial of Service DoS or possibly to achieve code execution...
CVE-2021-26236
FastStone Image Viewer v.= 7.5 is affected by a Stack-based Buffer Overflow at 0x005BDF49, affecting the CUR file parsing functionality BITMAPINFOHEADER Structure, 'BitCount' file format field, that will end up corrupting the Structure Exception Handler SEH. Attackers could exploit this issue to...
Stack overflow
FastStone Image Viewer v.= 7.5 is affected by a Stack-based Buffer Overflow at 0x005BDF49, affecting the CUR file parsing functionality BITMAPINFOHEADER Structure, 'BitCount' file format field, that will end up corrupting the Structure Exception Handler SEH. Attackers could exploit this issue to...
CVE-2021-26236
FastStone Image Viewer v.= 7.5 is affected by a Stack-based Buffer Overflow at 0x005BDF49, affecting the CUR file parsing functionality BITMAPINFOHEADER Structure, 'BitCount' file format field, that will end up corrupting the Structure Exception Handler SEH. Attackers could exploit this issue to...
FastStone Image Viewer 代码问题漏洞
FastStone Image Viewer is a free image viewing, converting and editing tool. FSViewer.exe in FastStone Image Viewer 7.5 and earlier versions is vulnerable. An attacker can exploit this vulnerability via a malformed CUR file to cause a denial of service or achieve code execution...
Huawei EulerOS: Security Advisory for icoutils (EulerOS-SA-2017-1059)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP1 : icoutils (EulerOS-SA-2017-1089)
According to the versions of the icoutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple vulnerabilities were found in icoutils, in the wrestool program. An attacker could create a crafted executable that, when read by...
EulerOS 2.0 SP2 : icoutils (EulerOS-SA-2017-1059)
According to the versions of the icoutils package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - Multiple vulnerabilities were found in icoutils, in the wrestool program. An attacker could create a crafted executable that, when read by...