Lucene search
K

137 matches found

CVE
CVE
added 2011/07/07 9:0 p.m.110 views

CVE-2011-1931

CVE-2011-1931 is a vulnerability in FFmpeg’s AMV handling where sp5xdec.c in the Sunplus SP5X JPEG decoder (libavcodec/FFmpeg) writes outside the bounds of an unspecified array, enabling memory corruption and potentially remote code execution when processing malformed AMV files. The flaw affects ...

6.8CVSS9.7AI score0.02228EPSS
Exploits0References5Affected Software3
Cvelist
Cvelist
added 2011/07/07 9:0 p.m.34 views

CVE-2011-1931

sp5xdec.c in the Sunplus SP5X JPEG decoder in libavcodec in FFmpeg before 0.6.3 and libav through 0.6.2, as used in VideoLAN VLC media player 1.1.9 and earlier and other products, performs a write operation outside the bounds of an unspecified array, which allows remote attackers to cause a denia...

9.8AI score0.02228EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2011/07/07 9:0 p.m.55 views

CVE-2011-1931

sp5xdec.c in the Sunplus SP5X JPEG decoder in libavcodec in FFmpeg before 0.6.3 and libav through 0.6.2, as used in VideoLAN VLC media player 1.1.9 and earlier and other products, performs a write operation outside the bounds of an unspecified array, which allows remote attackers to cause a denia...

6.8CVSS9.9AI score0.02228EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2011/07/07 12:0 a.m.38 views

CVE-2011-1931

sp5xdec.c in the Sunplus SP5X JPEG decoder in libavcodec in FFmpeg before 0.6.3 and libav through 0.6.2, as used in VideoLAN VLC media player 1.1.9 and earlier and other products, performs a write operation outside the bounds of an unspecified array, which allows remote attackers to cause a denia...

6.8CVSS7.5AI score0.02228EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.34 views

Debian Security Advisory DSA 1137-1 (tiff)

The remote host is missing an update to tiff announced via advisory DSA 1137-1. Tavis Ormandy of the Google Security Team discovered several problems in the TIFF library. The Common Vulnerabilities and Exposures project identifies the following issues: CVE-2006-3459 Several stack-buffer overflows...

7.8CVSS0.6AI score0.53046EPSS
Exploits13
Opera Security Advisories
Opera Security Advisories
added 2007/02/09 12:0 a.m.8 views

Opera not vulnerable to JPEG processing vulnerability in Microsoft’s GDI+ library – Opera Security Advisories

Opera not vulnerable to JPEG processing vulnerability in Microsoft’s GDI+ library – Opera Security Advisories OPCOM Team | February 9, 2007 Opera is not vulnerable to the JPEG processing vulnerability in Microsoft’s GDI+ library. Details: Microsoft Security Bulletin MS04-028 Buffer Overrun in JPE...

5.8AI score
Exploits0References1
UbuntuCve
UbuntuCve
added 2006/08/03 1:4 a.m.24 views

CVE-2006-3460

Heap-based buffer overflow in the JPEG decoder in the TIFF library libtiff before 3.8.2 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an encoded JPEG stream that is longer than the scan line size TiffScanLineSize...

7.5CVSS7.8AI score0.04338EPSS
Exploits1References2
NVD
NVD
added 2006/08/03 1:4 a.m.19 views

CVE-2006-3460

Heap-based buffer overflow in the JPEG decoder in the TIFF library libtiff before 3.8.2 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an encoded JPEG stream that is longer than the scan line size TiffScanLineSize...

7.5CVSS7.6AI score0.04338EPSS
Exploits1References41
OSV
OSV
added 2006/08/03 1:4 a.m.10 views

CVE-2006-3460

Heap-based buffer overflow in the JPEG decoder in the TIFF library libtiff before 3.8.2 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an encoded JPEG stream that is longer than the scan line size TiffScanLineSize...

7.7AI score
Exploits0References42
Cvelist
Cvelist
added 2006/08/03 1:0 a.m.22 views

CVE-2006-3460

Heap-based buffer overflow in the JPEG decoder in the TIFF library libtiff before 3.8.2 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an encoded JPEG stream that is longer than the scan line size TiffScanLineSize...

7.5AI score0.04338EPSS
Exploits1References41
Debian CVE
Debian CVE
added 2006/08/03 1:0 a.m.25 views

CVE-2006-3460

Heap-based buffer overflow in the JPEG decoder in the TIFF library libtiff before 3.8.2 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an encoded JPEG stream that is longer than the scan line size TiffScanLineSize...

7.5CVSS6.7AI score0.04338EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2006/08/02 10:8 a.m.4 views

Multiple libtiff flaws (CVE-2006-3460 CVE-2006-3461 CVE-2006-3462 CVE-2006-3463 CVE-2006-3464 CVE-2006-3465)

Heap-based buffer overflow in the JPEG decoder in the TIFF library libtiff before 3.8.2 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via an encoded JPEG stream that is longer than the scan line size TiffScanLineSize...

7.8CVSS7.9AI score0.05665EPSS
Exploits1References4
OSV
OSV
added 2006/08/02 12:0 a.m.54 views

DSA-1137-1 tiff - several vulnerabilities

Bulletin has no description...

7.8CVSS6.5AI score0.53046EPSS
Exploits13
NVD
NVD
added 2005/07/19 4:0 a.m.21 views

CVE-2005-2308

The JPEG decoder in Microsoft Internet Explorer allows remote attackers to cause a denial of service CPU consumption or crash and possibly execute arbitrary code via certain crafted JPEG images, as demonstrated using 1 movfencepost.jpg, 2 cmpfencepost.jpg, 3 oomdos.jpg, or 4 random.jpg...

7.5CVSS7.8AI score0.17417EPSS
Exploits1References5
CVE
CVE
added 2005/07/19 4:0 a.m.59 views

CVE-2005-2308

The CVE-2005-2308 entry affects Microsoft Internet Explorer's JPEG decoding component. The provided documents describe a denial-of-service condition (CPU consumption or crash) and the possibility of arbitrary code execution triggered by specially crafted JPEG images (examples: mov_fencepost.jpg, ...

7.5CVSS7.8AI score0.17417EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2005/07/19 4:0 a.m.26 views

CVE-2005-2308

The JPEG decoder in Microsoft Internet Explorer allows remote attackers to cause a denial of service CPU consumption or crash and possibly execute arbitrary code via certain crafted JPEG images, as demonstrated using 1 movfencepost.jpg, 2 cmpfencepost.jpg, 3 oomdos.jpg, or 4 random.jpg...

7.8AI score0.17417EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2004/08/23 12:0 a.m.28 views

Fedora Core 1 : qt-3.1.2-14.2 (2004-270)

During a security audit, Chris Evans discovered a heap overflow in the BMP image decoder in Qt versions prior to 3.3.3. An attacker could create a carefully crafted BMP file in such a way that it would cause an application linked with Qt to crash or possibly execute arbitrary code when the file w...

7.5CVSS5.7AI score0.14694EPSS
Exploits0References2
Rows per page
Query Builder