Lucene search
K

130 matches found

OSV
OSV
added 2018/06/20 6:29 p.m.3 views

DEBIAN-CVE-2018-12600

In ImageMagick 7.0.8-3 Q16, ReadDIBImage and WriteDIBImage in coders/dib.c allow attackers to cause an out of bounds write via a crafted file...

8.8CVSS8.9AI score0.03295EPSS
Exploits1References1
Veracode
Veracode
added 2017/07/23 10:40 p.m.173 views

Denial Of Service (DoS) Through Memory Leak

ImageMagick is vulnerable to denial of service DoS attacks. Leveraging a flaw in the ReadDIBImage function, attackers can pass a dib file to the application to cause memory leaks...

6.5CVSS6.7AI score0.01876EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2017/03/20 4:59 p.m.4 views

DEBIAN-CVE-2014-9845

The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service crash via a corrupted dib file...

5.5CVSS6.7AI score0.01946EPSS
Exploits0References1
Prion
Prion
added 2017/03/20 4:59 p.m.22 views

Design/Logic Flaw

The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service crash via a corrupted dib file...

4.3CVSS6.7AI score0.01946EPSS
Exploits0References12Affected Software10
Debian CVE
Debian CVE
added 2017/03/20 4:0 p.m.40 views

CVE-2014-9845

The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service crash via a corrupted dib file...

5.5CVSS7.1AI score0.01946EPSS
Exploits0
seebug.org
seebug.org
added 2017/02/26 12:0 a.m.68 views

Windows gdi32.dll heap-based out-of-bounds reads / memory disclosure (CVE-2017-0038)

In issue 757, I described multiple bugs related to the handling of DIBs Device Independent Bitmaps embedded in EMF records, as implemented in the user-mode Windows GDI library gdi32.dll. As a quick reminder, the DIB-embedding records follow a common scheme: they include four fields, spots denotin...

4.3CVSS6.5AI score0.821EPSS
Exploits1
hackapp
hackapp
added 2016/12/28 12:53 p.m.43 views

DIB MOBILE - Customized SSL, Dangerous filesystem permissions, Redefined SSL Common Names verifier vulnerabilities

HackApp vulnerability scanner discovered that application DIB MOBILE published at the 'play' market has multiple vulnerabilities...

0.8AI score
Exploits0References1Affected Software1
0day.today
0day.today
added 2016/06/21 12:0 a.m.86 views

Microsoft Windows - gdi32.dll Multiple DIB-Related EMF Record Handlers Heap Based Out-of-Bounds Read

Exploit for windows platform in category dos / poc Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=757 As clearly visible in the EMF Enhanced Metafile image format specification MS-EMF, there are multiple records which deal with DIBs Device Independent Bitmaps. Examples of such...

4.3CVSS5.9AI score0.24988EPSS
Exploits1
exploitpack
exploitpack
added 2016/06/21 12:0 a.m.37 views

Microsoft Windows - gdi32.dll Multiple DIB-Related EMF Record Handlers Heap Out-of-Bounds ReadsMemory Disclosure (MS16-074)

Microsoft Windows - gdi32.dll Multiple DIB-Related EMF Record Handlers Heap Out-of-Bounds ReadsMemory Disclosure MS16-074 Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=757 As clearly visible in the EMF Enhanced Metafile image format specification MS-EMF, there are multiple...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2016/06/21 12:0 a.m.56 views

Microsoft Windows - 'gdi32.dll' Multiple DIB-Related EMF Record Handlers Heap Out-of-Bounds Reads/Memory Disclosure (MS16-074)

Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=757 As clearly visible in the EMF Enhanced Metafile image format specification MS-EMF, there are multiple records which deal with DIBs Device Independent Bitmaps. Examples of such records are EMRALPHABLEND, EMRBITBLT, EMRMASKBLT,...

7.4AI score
Exploits0
Openbugbounty
Openbugbounty
added 2016/06/20 2:38 p.m.9 views

dib-france.fr XSS vulnerability

Vulnerable URL: http://www.dib-france.fr/info.php?RuNum=5--%21%3E%27%3E%20%3C/form%3E%3Cscript%3Ealert%22OPENBUGBOUNTY%22;%3C/script%3E Details: Description| Value ---|--- Patched:| Yes, at 27.07.2017 Latest check for patch:| 27.07.2017 10:00 GMT Vulnerability type:| XSS Vulnerability status:|...

6.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2015/03/10 12:0 a.m.29 views

Fedora 20 : qt3-3.3.8b-62.fc20 (2015-2901)

This update fixes CVE-2015-0295, a division by zero when loading some specific invalid BMP/DIB image files, which could be exploited for denial of service application crash attacks. The security patch is backported from Qt 4. Note that Tenable Network Security has extracted the preceding...

5CVSS6.8AI score0.06311EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2014/12/31 12:0 a.m.30 views

CVE-2014-9845

The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service crash via a corrupted dib file...

5.5CVSS6.8AI score0.01946EPSS
Exploits0References2
OSV
OSV
added 2014/12/31 12:0 a.m.5 views

UBUNTU-CVE-2014-9845

The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service crash via a corrupted dib file...

5.5CVSS6.8AI score0.01946EPSS
Exploits0References3
Prion
Prion
added 2012/11/17 9:55 p.m.20 views

Heap overflow

Heap-based buffer overflow in IrfanView before 4.33 allows remote attackers to execute arbitrary code via a crafted RLE compressed bitmap file such as a DIB, RLE, or BMP image...

6.8CVSS8.7AI score0.05733EPSS
Exploits0References5Affected Software1
Tenable Nessus
Tenable Nessus
added 2009/04/23 12:0 a.m.34 views

Mandriva Linux Security Advisory : ImageMagick (MDVSA-2008:035)

Multiple vulnerabilities were discovered in the image decoders of ImageMagick. If a user or automated system were tricked into processing malicious DCM, DIB, XBM, XCF, or XWD images, a remote attacker could execute arbitrary code with user privileges. The updated packages have been patched to...

9.3CVSS8AI score0.03819EPSS
Exploits4References4
OpenVAS
OpenVAS
added 2009/04/09 12:0 a.m.25 views

Mandriva Update for ImageMagick MDVSA-2008:035 (ImageMagick)

Check for the Version of ImageMagick OpenVAS Vulnerability Test Mandriva Update for ImageMagick MDVSA-2008:035 ImageMagick Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

9.3CVSS0.3AI score0.03819EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2009/02/27 12:0 a.m.30 views

CentOS Update for ImageMagick CESA-2008:0145 centos4 i386

Check for the Version of ImageMagick OpenVAS Vulnerability Test CentOS Update for ImageMagick CESA-2008:0145 centos4 i386 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

6.8CVSS0.5AI score0.04528EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2008/04/18 12:0 a.m.31 views

RHEL 3 / 4 / 5 : ImageMagick (RHSA-2008:0145)

Updated ImageMagick packages that correct several security issues are now available for Red Hat Enterprise Linux versions 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. ImageMagick is an image display and manipulation tool for the...

7.8CVSS8.1AI score0.04528EPSS
Exploits5References13
Cent OS
Cent OS
added 2008/04/17 3:52 p.m.72 views

ImageMagick security update

CentOS Errata and Security Advisory CESA-2008:0145 Updated ImageMagick packages that correct several security issues are now available for Red Hat Enterprise Linux versions 3, 4, and 5. This update has been rated as having moderate security impact by the Red Hat Security Response Team. ImageMagic...

7.8CVSS7.5AI score0.04528EPSS
Exploits5References9
Rows per page
Query Builder