704 matches found
CVE-2009-1566
Integer overflow in Roxio Easy Media Creator 9.0.136, and Roxio Creator 2010 before SP1, might allow remote attackers to execute arbitrary code via an image with crafted dimensions...
CVE-2009-1566
Integer overflow in Roxio Easy Media Creator 9.0.136, and Roxio Creator 2010 before SP1, might allow remote attackers to execute arbitrary code via an image with crafted dimensions...
CVE-2009-1566
The CVE-2009-1566 issue is an integer overflow in Roxio’s image handling. Public sources describe an overflow when allocating memory for an image based on its dimensions, affecting Roxio Easy Media Creator 9.0.136 and Roxio Creator 2010 up to before SP1. The vulnerability could allow remote attac...
Roxio Creator integer overflow
Integer overflow via image dimensions...
OpenJDK ImageI/O JPEG heap overflow (6874643)
Integer overflow in the JPEGImageReader implementation in the ImageI/O component in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, and SDK and JRE 1.4.x before 1.4.224 allows remote attackers to execute arbitrary code via large subsample dimensions in a JPEG file...
CVE-2009-0199
Heap-based buffer overflow in the VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows might allow remote attacke...
CVE-2009-0199
Heap-based buffer overflow in the VMnc media codec in vmnc.dll in VMware Movie Decoder before 6.5.3 build 185404, VMware Workstation 6.5.x before 6.5.3 build 185404, VMware Player 2.5.x before 2.5.3 build 185404, and VMware ACE 2.5.x before 2.5.3 build 185404 on Windows might allow remote attacke...
ImageMagick integer overflow
Memory corruption on TIFF dimensions procesing...
Serena Dimensions CM cryptographic vulnerability
Server certificate is not validated by client...
Serena Dimensions CM Desktop Client does not validate the server SSL certificate
Application: Serena Dimensions CM Affected versions: 10.1 and later Vulnerability: man-in-the-middle attacks Problem type: remote Problem description: ==================== The client/server connection can be SSL encrypted by setting "-ssl" in the listener.dat. The problem is that the Desktop clie...
CVE-2009-0878
The readgamemap function in src/terraintranslation.cpp in Wesnoth before r32987 allows remote attackers to cause a denial of service memory consumption and daemon hang via a map with a large 1 width or 2 height...
DEBIAN-CVE-2008-1379
Integer overflow in the fbShmPutImage function in the MIT-SHM extension in the X server 1.4 in X.Org X11R7.3 allows context-dependent attackers to read arbitrary process memory via crafted values for a Pixmap width and height...
cairo integer overflow
Multiple integer overflows in Cairo before 1.4.12 might allow remote attackers to execute arbitrary code, as demonstrated using a crafted PNG image with large width and height values, which is not properly handled by the readpng function...
Design/Logic Flaw
Multiple PHP remote file inclusion vulnerabilities in FrontAccounting FA 1.12 allow remote attackers to execute arbitrary PHP code via a URL in the pathtoroot parameter to 1 access/logout.php or certain PHP scripts under 2 admin/, 3 dimensions/, 4 gl/, 5 inventory/, 6 manufacturing/, 7 purchasing...
PT-2007-6241 · Frontaccounting · Frontaccounting
Multiple PHP remote file inclusion vulnerabilities in FrontAccounting FA 1.12 allow remote attackers to execute arbitrary PHP code via a URL in the path to root parameter to 1 access/logout.php or certain PHP scripts under 2 admin/, 3 dimensions/, 4 gl/, 5 inventory/, 6 manufacturing/, 7...
php multiple integer overflows in gd
Multiple integer overflows in libgd in PHP before 5.2.4 allow remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a large 1 srcW or 2 srcH value to the a gdImageCopyResized function, or a large 3 sy height or 4 sx width value to the b...
Fedora Core 6 : gimp-2.2.15-3.fc6 (2007-619)
Wed Jun 27 2007 Nils Philippsen - 2:2.2.15-3 - refuse to open PSD files with insanely large dimensions 244402, fix by Sven Neumann - Wed Jun 13 2007 Nils Philippsen - 2:2.2.15-2 - require gutenprint-plugin or gimp-print-plugin 243593 Note that Tenable Network Security has extracted the preceding...
CVE-2007-1325
The PMAArrayWalkRecursive function in libraries/common.lib.php in phpMyAdmin before 2.10.0.2 does not limit recursion on arrays provided by users, which allows context-dependent attackers to cause a denial of service web server crash via an array with many dimensions. NOTE: it could be argued tha...
security flaw
Cross-site scripting XSS vulnerability in phpinfo info.c in PHP 5.1.2 and 4.4.2 allows remote attackers to inject arbitrary web script or HTML via long array variables, including 1 a large number of dimensions or 2 long values, which prevents HTML tags from being removed...
CVE-2006-0301
Heap-based buffer overflow in Splash.cc in xpdf, as used in other products such as 1 poppler, 2 kdegraphics, 3 gpdf, 4 pdfkit.framework, and others, allows attackers to cause a denial of service and possibly execute arbitrary code via crafted splash images that produce certain values that exceed...