EUVD-2017-12105

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2024-28577

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Null Pointer Dereference vulnerability in open source FreeImage v.3.19.0 r1909 allows a local attacker to cause a denial of service DoS via the...

Linux Distros Unpatched Vulnerability : CVE-2024-28573

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Buffer Overflow vulnerability in open source FreeImage v.3.19.0 r1909 allows a local attacker to cause a denial of service DoS via the jpegreadexifprofile...

SUSE CVE-2024-28577

Null Pointer Dereference vulnerability in open source FreeImage v.3.19.0 r1909 allows a local attacker to cause a denial of service DoS via the jpegreadexifprofileraw function when reading images in JPEG format...

DEBIAN-CVE-2024-28573

Buffer Overflow vulnerability in open source FreeImage v.3.19.0 r1909 allows a local attacker to cause a denial of service DoS via the jpegreadexifprofile function when reading images in JPEG format...

DEBIAN-CVE-2023-47996

An integer overflow vulnerability in Exif.cpp::jpegreadexifdir in FreeImage 3.18.0 allows attackers to obtain information and cause a denial of service...

SUSE CVE-2015-0232

The exifprocessunicode function in ext/exif/exif.c in PHP before 5.4.37, 5.5.x before 5.5.21, and 5.6.x before 5.6.5 allows remote attackers to execute arbitrary code or cause a denial of service uninitialized pointer free and application crash via crafted EXIF data in a JPEG image...

SUSE CVE-2021-3482

A flaw was found in Exiv2 in versions before and including 0.27.4-RC1. Improper input validation of the rawData.size property in Jp2Image::readMetadata in jp2image.cpp can lead to a heap-based buffer overflow via a crafted JPG image containing malicious EXIF data...

PT-2020-3996 · Unknown · Responsive Filemanager

Name of the Vulnerable Software and Affected Versions: Responsive Filemanager versions through 9.14.0 Description: An issue was discovered in the ajax calls.php file, specifically in the save img action, where the name parameter lacks validation of the sent extension. This allows for the executio...

USN-3953-2 php5 vulnerabilities

USN-3953-1 fixed several vulnerabilities in PHP. This update provides the corresponding update for Ubuntu 12.04 ESM and Ubuntu 14.04 ESM. Original advisory details: It was discovered that PHP incorrectly handled certain exif tags in JPEG images. A remote attacker could use this issue to cause PHP...

USN-3953-1 php7.0, php7.2 vulnerabilities

It was discovered that PHP incorrectly handled certain exif tags in JPEG images. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code...

USN-3766-1 php5, php7.0, php7.2 vulnerabilities

It was discovered that PHP incorrectly handled restarting certain child processes when php-fpm is used. A remote attacker could possibly use this issue to cause a denial of service. This issue was only addressed in Ubuntu 18.04 LTS. CVE-2015-9253 It was discovered that PHP incorrectly handled...

CVE-2017-2964

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability in the image conversion engine, related to the parsing of JPEG EXIF metadata. Successful exploitation could lead to arbitrary code execution...

Memory corruption

Adobe Acrobat Reader versions 15.020.20042 and earlier, 15.006.30244 and earlier, 11.0.18 and earlier have an exploitable memory corruption vulnerability in the image conversion engine, related to the parsing of JPEG EXIF metadata. Successful exploitation could lead to arbitrary code execution...

PHP 'exif_process_unicode' function remote code execution vulnerability

PHP is a widely used general purpose scripting language. A remote code execution vulnerability in the exifprocessunicode function in PHP ext/exif/exif.c allows remote attackers to cause a denial of service by executing arbitrary code or EXIF data crafted from JPEG images...

ImageMagick Multiple Denial of Service Vulnerabilities - 01 June13 (Windows)

The host is installed with ImageMagick and is prone to multiple denial of service Vulnerabilities. OpenVAS Vulnerability Test $Id: gbimagemagickmultdosvuln01jun13win.nasl 8173 2017-12-19 11:45:56Z cfischer $ ImageMagick Multiple Denial of Service Vulnerabilities - 01 June13 Windows Authors: Thang...

ImageMagick < 6.7.6-4 Integer Overflow Vulnerability (Jun 2013) - Windows

ImageMagick is prone to an integer overflow vulnerability. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

ImageMagick Integer Overflow Vulnerability - 02 June13 (Windows)

The host is installed with ImageMagick and is prone to integer overflow Vulnerability. OpenVAS Vulnerability Test $Id: gbimagemagickintegeroverflowvuln02jun13win.nasl 8173 2017-12-19 11:45:56Z cfischer $ ImageMagick Integer Overflow Vulnerability - 02 June13 Windows Authors: Thanga Prakash S...

Ubuntu Update for imagemagick USN-1435-1

Ubuntu Update for Linux kernel vulnerabilities USN-1435-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN14351.nasl 7960 2017-12-01 06:58:16Z santu $ Ubuntu Update for imagemagick USN-1435-1 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net...

Ubuntu 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : imagemagick vulnerabilities (USN-1435-1)

Joonas Kuorilehto and Aleksis Kauppinen discovered that ImageMagick incorrectly handled certain ResolutionUnit tags. If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attacker could exploit this to cause a denial of service or possibly execute...