17 matches found
Linux Distros Unpatched Vulnerability : CVE-2015-3751
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebKit in Apple Safari before 6.2.8, 7.x before 7.1.8, and 8.x before 8.0.8, as used in iOS before 8.4.1 and other products, allows remote attackers to bypass a...
eziod 安全漏洞
eziod is simple image object dataset. A security vulnerability exists in eziod that originates from a code execution backdoor inserted by a third party...
Mozilla Firefox ESR Multiple Vulnerabilities-01 (Nov 2013) - Windows
Mozilla Firefox ESR is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefoxesr";...
CVE-2013-5596
The cycle collection CC implementation in Mozilla Firefox before 25.0, Firefox ESR 24.x before 24.1, Thunderbird before 24.1, and SeaMonkey before 2.22 does not properly determine the thread for release of an image object, which allows remote attackers to execute arbitrary code or cause a denial ...
CVE-2013-5596
The cycle collection CC implementation in Mozilla Firefox before 25.0, Firefox ESR 24.x before 24.1, Thunderbird before 24.1, and SeaMonkey before 2.22 does not properly determine the thread for release of an image object, which allows remote attackers to execute arbitrary code or cause a denial ...
LibreOffice Graphic Object Loading Buffer Overflow Vulnerability (Mac OS X)
This host is installed with LibreOffice and is prone to buffer overflow vulnerability. OpenVAS Vulnerability Test $Id: gblibreofficegraphicobjectbofvulnmacosx.nasl 5977 2017-04-19 09:02:22Z teissa $ LibreOffice Graphic Object Loading Buffer Overflow Vulnerability Mac OS X Authors: Rachana Shetty...
LibreOffice Graphic Object Loading Buffer Overflow Vulnerability - Windows
LibreOffice is prone to a buffer overflow vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2012-1149
Integer overflow in the vclmi.dll module in OpenOffice.org OOo 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted embedded image object, as demonstrated by a JP...
Integer overflow
Integer overflow in the vclmi.dll module in OpenOffice.org OOo 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted embedded image object, as demonstrated by a JP...
CVE-2012-1149
Integer overflow in the vclmi.dll module in OpenOffice.org OOo 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted embedded image object, as demonstrated by a JP...
CVE-2012-1149
Integer overflow in the vclmi.dll module in OpenOffice.org OOo 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted embedded image object, as demonstrated by a JP...
libreoffice: Integer overflows, leading to heap-buffer overflows in JPEG, PNG and BMP reader implementations
Integer overflow in the vclmi.dll module in OpenOffice.org OOo 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote attackers to cause a denial of service application crash and possibly execute arbitrary code via a crafted embedded image object, as demonstrated by a JP...
IBM Lotus Symphony Image Object Integer Overflow Vulnerability - Linux
IBM Lotus Symphony is prone to an integer overflow vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 007-1 (zope)
The remote host is missing an update to zope announced via advisory DSA 007-1. OpenVAS Vulnerability Test $Id: deb0071.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 007-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...
CVE-2007-4848
Microsoft Internet Explorer 4.0 through 7 allows remote attackers to determine the existence of local files that have associated images via a res:// URI in the src property of a JavaScript Image object, as demonstrated by the URI for a bitmap image resource within a 1 .exe or 2 .dll file...
Code injection
Microsoft Internet Explorer 4.0 through 7 allows remote attackers to determine the existence of local files that have associated images via a res:// URI in the src property of a JavaScript Image object, as demonstrated by the URI for a bitmap image resource within a 1 .exe or 2 .dll file...
CVE-2007-4848
CVE-2007-4848 affects Microsoft Internet Explorer 4.0–7. The issue allows remote attackers to determine whether local files have associated images by using a res:// URI in the src property of a JavaScript Image object, demonstrated with bitmap data inside a (1) .exe or (2) .dll file. The connecte...