IrfanView 4.33 DJVU Image Processing Heap Overflow

No description provided by source. Application: IrfanView DJVU Image Processing Heap Overflow Version: The vulnerability is confirmed in version 4.33. Other versions may also be affected Plateform: Windows Exploitation: Remote code execution Secunia Number: SA49176 PRL: 2012-23 Author: Francis...

Cam2pc 4.6.2 - BMP Image Processing Integer Overflow Vulnerability

No description provided by source. Application: Cam2pc BMP Image Processing Integer Overflow Vulnerability Platforms: Windows Vendor : http://www.nabocorp.co Versions : The vulnerability is confirmed in version 4.6.2 Freeware Edition Other versions may also be affected. Date : 2013-03-13 Contact ...

Cerulean Studios Trillian 3.0 - Remote PNG Image File Parsing Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/12703/info A remote buffer overflow vulnerability affects Cerulean Studios Trillian. This issue is due to a failure of the application to securely copy image data into finite process buffers. An attacker may leverage this...

XnView 1.98.8 GIF Image Processing Heap Overflow

No description provided by source. Application: XnView GIF Image Processing Heap Overflow Platforms: Windows Secunia: SA48666 PRL: 2012-18 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter: @ProtekResearch 1 Introduction 2 Report Timeline 3...

XnView 1.98.8 TIFF Image Processing Heap Overflow (2)

No description provided by source. Application: XnView TIFF Image Processing Heap Overflow Platforms: Windows Secunia: SA48666 PRL: 2012-15 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter: @ProtekResearch 1 Introduction 2 Report Timeline 3...

XnView FlashPix Image Processing Heap Overflow

No description provided by source. Application: XnView FlashPix Image Processing Heap Overflow Platforms: Windows Secunia: SA47388 PRL: 2012-06 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter: @ProtekResearch 1 Introduction 2 Report Timeline 3...

XnView RAS Image Processing Heap Overflow

No description provided by source. Application: XnView RAS Image Processing Heap Overflow Platforms: Windows Secunia: SA49091 PRL: 2012-14 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter: @ProtekResearch 1 Introduction 2 Report Timeline 3...

Microsoft Windows XP/2000/2003 Graphical Device Interface Plus Library Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19221/info Reportedly, the Microsoft Windows GDI+ library 'gdiplus.dll' is prone to a denial-of-service vulnerability because the software fails to handle malformed image files properly. An attacker may leverage this issu...

XnView 1.98.8 TIFF Image Processing Heap Overflow

No description provided by source. Application: XnView TIFF Image Processing Heap Overflow Platforms: Windows Secunia: SA48666 PRL: 2012-16 Author: Francis Provencher Protek Research Lab's Website: http://www.protekresearchlab.com/ Twitter: @ProtekResearch 1 Introduction 2 Report Timeline 3...

openSUSE Security Update : java-1_7_0-openjdk (openSUSE-SU-2013:0377-1)

java-170-openjdk was updated to icedtea-2.3.6 bnc803379 containing various security and bugfixes : - Security fixes - S6563318, CVE-2013-0424: RMI data sanitization - S6664509, CVE-2013-0425: Add logging context - S6664528, CVE-2013-0426: Find log level matching its name or value given at...

Fedora Update for python-pillow FEDORA-2014-5492

Check for the Version of python-pillow OpenVAS Vulnerability Test Fedora Update for python-pillow FEDORA-2014-5492 Authors: System Generated Check Copyright: Copyright C 2014 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it...

[USN-2190-1] JBIG-KIT vulnerability

========================================================================== Ubuntu Security Notice USN-2190-1 May 01, 2014 jbigkit vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubunt...

USN-2190-1: JBIG-KIT vulnerability

Florian Weimer discovered that JBIG-KIT incorrectly handled certain malformed images. If a user or automated system were tricked into processing a specially crafted image, JBIG-KIT could be made to crash, or possibly execute arbitrary code...

[SECURITY] Fedora 20 Update: python-pillow-2.2.1-4.fc20

Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are five subpackages: tk tk interface, qt PIL image wrapper for Qt , sane scanning...

[SECURITY] Fedora 19 Update: python-pillow-2.0.0-13.gitd1c6db8.fc19

Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are five subpackages: tk tk interface, qt PIL image wrapper for Qt , sane scanning...

Dillo图像处理多个内存破坏漏洞

Bugtraq ID:66792 Dillo是一款小巧的网页浏览器。 Dillo处理图像存在一个整数溢出，允许攻击者利用漏洞构建恶意图像，诱使应用解析，可破坏内存，使应用程序崩溃或者可执行任意代码。 0 Dillo 3.x Dillo 3.0.4版本已修复该漏洞，建议用户下载使用： http://hg.dillo.org/...

Mozilla Firefox Multiple Vulnerabilities-01 (Mar 2014) - Windows

Mozilla Firefox is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:firefox";...

MGASA-2014-0087 Updated imagemagick package fixes security vulnerabilities

A buffer overflow flaw was found in the way ImageMagick handled PSD images that use RLE encoding. An attacker could create a malicious PSD image file that, when opened in ImageMagick, would cause ImageMagick to crash or, potentially, execute arbitrary code with the privileges of the user running...

Mozilla updates February 2014 (important)

Updates for mozilla-nss 3.15.4 MozillaFirefox 24.3.0esr MozillaThunderbird 24.3.0 including fixes for the following issues: MFSA 2014-01/CVE-2014-1477/CVE-2014-1478 Miscellaneous memory safety hazards rv:27.0 / rv:24.3 MFSA 2014-02/CVE-2014-1479 bmo911864 Clone protected content with XBL scopes...

EUVD-2014-1562

Use-after-free vulnerability in the imgRequestProxy function in Mozilla Firefox before 27.0, Firefox ESR 24.x before 24.3, Thunderbird before 24.3, and SeaMonkey before 2.24 allows remote attackers to execute arbitrary code via vectors involving unspecified Content-Type values for image data...