34 matches found
WordPress DWT - Directory & Listing theme <= 3.3.3 - Reflected Cross-Site Scripting vulnerability
WordPress DWT - Directory & Listing theme = 3.3.3 - Reflected Cross-Site Scripting vulnerability discovered by István Márton in WordPress Theme DWT - Directory & Listing versions = 3.3.3...
Malicious code in dwt-runner (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 71538fff3798a2b42ad1f28f2cbd053e501b0e143b563f0334e005a1ed152e24 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-8072 Malicious code in dwt-runner (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 71538fff3798a2b42ad1f28f2cbd053e501b0e143b563f0334e005a1ed152e24 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in dwt-reporter (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 88db403b92b94f5d553816c131337f522d67a2db9e84298e6512b1a3ba386a7f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-8071 Malicious code in dwt-reporter (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 88db403b92b94f5d553816c131337f522d67a2db9e84298e6512b1a3ba386a7f Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
SUSE CVE-2015-6776
The opjdwtdecode1 functions in dwt.c in OpenJPEG, as used in PDFium in Google Chrome before 47.0.2526.73, allow remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via crafted JPEG 2000 data that is mishandled during a discrete wavele...
SUSE CVE-2016-5157
Heap-based buffer overflow in the opjdwtinterleavev function in dwt.c in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to execute arbitrary code via crafted coordinate values in JPEG 2000 data...
USN-5664-1: OpenJPEG vulnerabilities
It was discovered that OpenJPEG did not properly handle PNM headers, resulting in a null pointer dereference. A remote attacker could possibly use this issue to cause a denial of service DoS. CVE-2016-7445 It was discovered that OpenJPEG incorrectly handled certain image files resulting in divisi...
Adobe Acrobat Pro DC DWT File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe Acrobat Pro DC. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing o...
chromium-browser: heap overflow in pdfium
Heap-based buffer overflow in the opjdwtinterleavev function in dwt.c in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to execute arbitrary code via crafted coordinate values in JPEG 2000 data...
DEBIAN-CVE-2016-5157
Heap-based buffer overflow in the opjdwtinterleavev function in dwt.c in OpenJPEG, as used in PDFium in Google Chrome before 53.0.2785.89 on Windows and OS X and before 53.0.2785.92 on Linux, allows remote attackers to execute arbitrary code via crafted coordinate values in JPEG 2000 data...
OpenJPEG opj_dwt_interleave_v heap overflow vulnerability
OpenJPEG is a C-based open source JPEG 2000 codec . A security vulnerability exists in the opjdwtinterleavev function of OpenJPEG, which allows remote attackers to construct specially crafted JPEG 2000 images to trigger a heap overflow vulnerability that can be exploited for arbitrary code...
The vulnerability of the FFmpeg multimedia library, which allows a intruder to trigger a service failure or cause other effects
The vulnerability of the ffdwtdecode function libavcodec/jpeg2000dwt.c in the multimedia library FFmpeg exists due to the lack of checks for the number of decomposition levels before performing the discrete wavelet transformation. Exploiting this vulnerability could allow a malicious actor to cau...
CVE-2015-8662
FFmpeg vulnerability CVE-2015-8662 affects the libavcodec/jpeg2000dwt.c module, where ff_dwt_decode does not validate the number of decomposition levels before performing Discrete Wavelet Transform decoding. For crafted JPEG 2000 data, this can trigger an out-of-bounds array access and a denial o...