134 matches found
CVE-2020-26513
An issue was discovered in Intland codeBeamer ALM 10.x through 10.1.SP4. The ReqIF XML data, used by the codebeamer ALM application to import projects, is parsed by insecurely configured software components, which can be abused for XML External Entity Attacks...
PT-2020-16433 · Intland · Codebeamer Alm
Name of the Vulnerable Software and Affected Versions: Intland codeBeamer ALM versions 10.x through 10.1.SP4 Description: An issue was discovered in the way Intland codeBeamer ALM parses ReqIF XML data used for importing projects. The software components are insecurely configured, allowing for XM...
DEBIAN-CVE-2015-7505
Stack-based buffer overflow in the gifnextLZW function in libnsgif.c in Libnsgif 0.1.2 allows context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted LZW stream in a GIF file...
qt5-qtbase: QImage allocation failure in qgifhandler
An issue was discovered in Qt before 5.11.3. A malformed GIF image causes a NULL pointer dereference in QGifHandler resulting in a segmentation fault...
Arbitrary Code Execution Or Denial Of Service (DoS)
Mozilla Firefox is an open source web browser. XULRunner provides the XUL Runtime environment for Mozilla Firefox. Several flaws were found in the processing of malformed web content. A web page containing malicious content could cause Firefox to crash or, potentially, execute arbitrary code with...
PYSEC-2019-210
NULL pointer dereference in Google TensorFlow before 1.12.2 could cause a denial of service via an invalid GIF file...
PYSEC-2019-235
NULL pointer dereference in Google TensorFlow before 1.12.2 could cause a denial of service via an invalid GIF file...
CVE-2019-9635
NULL pointer dereference in Google TensorFlow before 1.12.2 could cause a denial of service via an invalid GIF file...
CVE-2019-7360
An exploitable use-after-free vulnerability in the DXF-parsing functionality in Autodesk Advance Steel 2018, Autodesk AutoCAD 2018, Autodesk AutoCAD Architecture 2018, Autodesk AutoCAD Electrical 2018, Autodesk AutoCAD Map 3D 2018, Autodesk AutoCAD Mechanical 2018, Autodesk AutoCAD MEP 2018,...
The vulnerability of PDF viewing and editing programs such as Adobe Acrobat, Adobe Reader, and Adobe Acrobat Document Cloud, related to the manipulation of the null pointer, allows attackers to execute arbitrary code.
The vulnerabilities of PDF viewing and editing programs such as Adobe Acrobat, Adobe Reader, Adobe Acrobat Document Cloud, and Adobe Reader Document Cloud are related to the handling of the null pointer. Exploiting these vulnerabilities allows a malicious actor to execute arbitrary code using a...
The vulnerability of Adobe Acrobat and Adobe Reader PDF viewer/editor programs, related to writing beyond the buffer in memory, allows a perpetrator to execute arbitrary code.
The vulnerability of Adobe Acrobat and Adobe Reader PDF viewer/editor programs lies in the writing of data beyond the buffer limit in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created GIF file...
DEBIAN-CVE-2018-17436
ReadCode in decompress.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service invalid write access via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file...
Foxit Reader GIF DataSubBlock Out-of-Bounds Read Information Disclosure Vulnerability
Foxit Reader is a small PDF document viewer and printing program. Foxit Reader has a security vulnerability in the parsing of the DataSubBlock structure of GIF graphics, which can be exploited by an attacker to obtain sensitive information due to a lack of proper validation of user-supplied data...
ALPINE-CVE-2017-14450
A buffer overflow vulnerability exists in the GIF image parsing functionality of SDL2image-2.0.2. A specially crafted GIF image can lead to a buffer overflow on a global section. An attacker can display an image to trigger this vulnerability...
PT-2018-5052 · Corel · Core Photo-Paint X8
Name of the Vulnerable Software and Affected Versions: Core PHOTO-PAINT X8 version 18.1.0.661 Description: A memory corruption vulnerability exists in the GIF parsing functionality. This issue can be triggered by a specially crafted GIF file, potentially resulting in code execution. An attacker c...
UBUNTU-CVE-2017-18254
An issue was discovered in ImageMagick 7.0.7. A memory leak vulnerability was found in the function WriteGIFImage in coders/gif.c, which allow remote attackers to cause a denial of service via a crafted file...
PHP GD Graphics Library Denial of Service Vulnerability
PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community.GD Graphics Library also known as libgd or libgd2 is an open source library for dynamically creating images developed by American software...
The vulnerability of the GIF loader in the imlib2 library allows a hacker to trigger a service failure or gain access to confidential data.
The vulnerability of the imlib2 GIF library loader exists due to a read buffer overflow error. Exploiting this vulnerability can allow an attacker to cause service failures or gain access to confidential data using a specially created GIF image...
GNU Libextractor Denial of Service Vulnerability (CNVD-2018-00306)
GNU Libextractor is a set of libraries developed by the GNU Project for extracting metadata from files. A security vulnerability exists in GNU Libextractor version 1.6. A remote attacker can exploit this vulnerability to cause a denial of service null pointer backreference and application crash...
CVE-2017-17440
GNU Libextractor 1.6 allows remote attackers to cause a denial of service NULL pointer dereference and application crash via a crafted GIF, IT Impulse Tracker, NSFE, S3M Scream Tracker 3, SID, or XM eXtended Module file, as demonstrated by the EXTRACTORxmextractmethod function in...