137 matches found
CVE-2012-1571
CVE-2012-1571 describes DoS via crafted CDF files that trigger out-of-bounds read or invalid pointer dereference in the File Information (fileinfo) component (libmagic) used by file and PHP. Public Advisories confirm the issue arises from an incomplete fix and that affected products include the f...
CVE-2012-1571
file before 5.11 and libmagic allow remote attackers to cause a denial of service crash via a crafted Composite Document File CDF file that triggers 1 an out-of-bounds read or 2 an invalid pointer dereference...
Debian Security Advisory DSA 2422-1 (file)
The remote host is missing an update to file announced via advisory DSA 2422-1. OpenVAS Vulnerability Test $Id: deb24221.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2422-1 file Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...
Adobe Reader and Acrobat PICT Image Heap Buffer Overflow (APSB11-24; CVE-2011-2433; CVE-2011-2434)
A remote code execution vulnerability has been reported in Adobe Reader and Acrobat. The vulnerability is due to an unsanitized loop counter. A remote attacker may exploit this vulnerability by enticing an unsuspecting user to open a malicious PDF document file. Successful exploitation would allo...
texlive: Integer overflow by processing special commands
Integer overflow in the predospecial function in dospecial.c in dvips in 1 TeX Live and 2 teTeX might allow user-assisted remote attackers to execute arbitrary code via a crafted DVI file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained from third party...
Mandrake Security Advisory MDVSA-2009:129 (file)
The remote host is missing an update to file announced via advisory MDVSA-2009:129. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only OR...
[ MDVSA-2009:129 ] file
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2009:129 http://www.mandriva.com/security/ Package : file Date : June 5, 2009 Affected: 2009.1 Problem Description: A security vulnerability has been identified and fixed in file: Heap-based buffer overflow in th...
CVE-2009-1515
Heap-based buffer overflow in the cdfreadsat function in src/cdf.c in Christos Zoulas file 5.00 allows user-assisted remote attackers to execute arbitrary code via a crafted compound document file, as demonstrated by a .msi, .doc, or .mpp file. NOTE: some of these details are obtained from third...
CVE-2009-1515
Heap-based buffer overflow in the cdfreadsat function in src/cdf.c in Christos Zoulas file 5.00 allows user-assisted remote attackers to execute arbitrary code via a crafted compound document file, as demonstrated by a .msi, .doc, or .mpp file. NOTE: some of these details are obtained from third...
Heap overflow
Heap-based buffer overflow in the cdfreadsat function in src/cdf.c in Christos Zoulas file 5.00 allows user-assisted remote attackers to execute arbitrary code via a crafted compound document file, as demonstrated by a .msi, .doc, or .mpp file. NOTE: some of these details are obtained from third...
CVE-2009-1515
Heap-based buffer overflow in the cdfreadsat function in src/cdf.c in Christos Zoulas file 5.00 allows user-assisted remote attackers to execute arbitrary code via a crafted compound document file, as demonstrated by a .msi, .doc, or .mpp file. NOTE: some of these details are obtained from third...
CVE-2009-1515
Heap-based buffer overflow in the cdfreadsat function in src/cdf.c in Christos Zoulas file 5.00 allows user-assisted remote attackers to execute arbitrary code via a crafted compound document file, as demonstrated by a .msi, .doc, or .mpp file. NOTE: some of these details are obtained from third...
xpdf: Freeing of potentially uninitialized memory in JBIG2 decoder
The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, and other products allows remote attackers to cause a denial of service crash via a crafted PDF file that triggers a free of uninitialized memory...
Design/Logic Flaw
Unspecified vulnerability in AppKit in Apple Mac OS X before 10.5 allows user-assisted remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted document file, as demonstrated by opening the document with TextEdit...
CVE-2008-1028
Unspecified vulnerability in AppKit in Apple Mac OS X before 10.5 allows user-assisted remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted document file, as demonstrated by opening the document with TextEdit...
DEBIAN-CVE-2005-3239
The OLE2 unpacker in clamd in Clam AntiVirus ClamAV 0.87-1 allows remote attackers to cause a denial of service segmentation fault via a DOC file with an invalid property tree, which triggers an infinite recursion in the ole2walkpropertytree function...
GLSA-200501-26 : ImageMagick: PSD decoding heap overflow
The remote host is affected by the vulnerability described in GLSA-200501-26 ImageMagick: PSD decoding heap overflow Andrei Nigmatulin discovered that a Photoshop Document PSD file with more than 24 layers could trigger a heap overflow. Impact : An attacker could potentially design a mailicous PS...