SuSE9 Security Update : IBM Java2 JRE and SDK (YOU Patch Number 12387)

This update brings the IBM Java 1.4.2 JDK and JRE to Service Release 13. It fixes lots of bugs and various security issues : - A security vulnerability in the Java Runtime Environment JRE may allow an untrusted applet or application to list the contents of the home directory of the user running t...

Batch Picture Watermark 1.0 Crash

""""""""""""""""""""""""""""""""""""""""""""""""""""""""""" """ :::::: :: :: :: :: :: :::: """ """ :: :: :: :: :::::: .. :::: :: """ """ ::::: ::: ::::: :: :: :: :: :: :::: """ """ :: :: :: :: : :: :: :: :: :: :: """ """ :::::: :: :: ::::: :: :::::: :: :: :::: rs.ir """ """ :: """ """ """...

Batch Picture Watemark 1.0 (.jpg File) Local Crash PoC

Exploit for unknown platform in category dos / poc ====================================================== Batch Picture Watemark 1.0 .jpg File Local Crash PoC ====================================================== Anti-Security Research Team & Security Institute + Bug : Batch Picture Watemark v1....

[SECURITY] Fedora 10 Update: ocaml-camlimages-3.0.1-3.fc10.2

CamlImages is an image processing library for Objective CAML, which provide s: basic functions for image processing and loading/saving, various image file formats hence providing a translation facility from format to format, and an interface with the Caml graphics library allows to display images...

[SECURITY] Fedora 11 Update: ocaml-camlimages-3.0.1-7.fc11.2

CamlImages is an image processing library for Objective CAML, which provide s: basic functions for image processing and loading/saving, various image file formats hence providing a translation facility from format to format, and an interface with the Caml graphics library allows to display images...

DSA-1857-1 camlimages - arbitrary code execution

Bulletin has no description...

CVE-2009-2295

Multiple integer overflows in CamlImages 2.2 and earlier might allow context-dependent attackers to execute arbitrary code via a crafted PNG image with large width and height values that trigger a heap-based buffer overflow in the 1 readpngfile or 2 readpngfileasrgb24 function...

[oCERT-2009-009] CamlImages integer overflows

2009-009 CamlImages integer overflows Description: CamlImages, an open source image processing library, suffers from several integer overflows which may lead to a potentially exploitable heap overflow and result in arbitrary code execution. The vulnerability is triggered by PNG image parsing, the...

CVE-2008-6811

Unrestricted file upload vulnerability in imageprocessing.php in the e-Commerce Plugin 3.4 and earlier for Wordpress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in...

Unrestricted file upload

Unrestricted file upload vulnerability in imageprocessing.php in the e-Commerce Plugin 3.4 and earlier for Wordpress allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in...

CVE-2008-6811

The CVE-2008-6811 vulnerability affects the WordPress e-Commerce plugin (≤ 3.4). It is an unrestricted file upload in image_processing.php that allows remote attackers to execute arbitrary code by uploading a file with an executable extension and then accessing it directly under wp-content/plugin...

WordPress e-Commerce Plugin <= 3.4 - Unrestricted File Upload

Because of this vulnerability in imageprocessing.php, the attackers can execute arbitrary code by uploading a file with an executable extension. Solution Update the plugin...

OpenJDK Buffer overflow in image processing (6726779)

Buffer overflow in Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; SDK and JRE 1.4.218 and earlier; and SDK and JRE 1.3.123 and earlier might allow remote attackers to execute arbitrary code, related to a ConvolveOp operation in the...

DEBIAN-CVE-2009-0584

icc.c in the International Color Consortium ICC Format library aka icclib, as used in Ghostscript 8.64 and earlier and Argyll Color Management System CMS 1.0.3 and earlier, allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code by usin...

CVE-2009-0584

CVE-2009-0584 , together with CVE-2009-0583, affects Ghostscript’s ICC library (icclib) used in Ghostscript 8.64 and earlier and Argyll CMS 1.0.3 and earlier. A crafted ICC profile embedded in a PostScript or PDF image can trigger context-dependent conditions that cause an application crash (deni...

CVE-2009-0723

Multiple integer overflows in LittleCMS aka lcms or liblcms before 1.18beta2, as used in Firefox 3.1beta, OpenJDK, and GIMP, allow context-dependent attackers to execute arbitrary code via a crafted image file that triggers a heap-based buffer overflow. NOTE: some of these details are obtained fr...

RedHat Update for cairo RHSA-2007:1078-02

Check for the Version of cairo OpenVAS Vulnerability Test RedHat Update for cairo RHSA-2007:1078-02 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms...

Fedora Update for GraphicsMagick FEDORA-2007-1340

Check for the Version of GraphicsMagick OpenVAS Vulnerability Test Fedora Update for GraphicsMagick FEDORA-2007-1340 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify i...

OpenJDK Buffer overflow in image processing (6726779)

Buffer overflow in Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; SDK and JRE 1.4.218 and earlier; and SDK and JRE 1.3.123 and earlier might allow remote attackers to execute arbitrary code, related to a ConvolveOp operation in the...

OpenJDK Buffer overflow in image processing (6726779)

Buffer overflow in Java Runtime Environment JRE for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; SDK and JRE 1.4.218 and earlier; and SDK and JRE 1.3.123 and earlier might allow remote attackers to execute arbitrary code, related to a ConvolveOp operation in the...