Lucene search
+L

979 matches found

Vulnrichment
Vulnrichment
added 2011/12/15 2:0 a.m.14 views

CVE-2011-4517

The jpccrggetparms function in libjasper/jpc/jpccs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service heap memory corruption, via a crafte...

7.9AI score0.10618EPSS
Exploits0References19
Debian CVE
Debian CVE
added 2011/12/15 2:0 a.m.36 views

CVE-2011-4516

Heap-based buffer overflow in the jpccoxgetcompparms function in libjasper/jpc/jpccs.c in JasPer 1.900.1 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted numrlvls value in a coding style default COD marker segment in a JPEG2000 file...

6.8CVSS8.2AI score0.10618EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2011/12/15 12:0 a.m.29 views

SuSE 10 Security Update : jasper (ZYPP Patch Number 7878)

The following bug has been fixed : - Specially crafted JPEG2000 files could have caused a heap buffer overflow in jasper. CVE-2011-4516 / CVE-2011-4517 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc';...

6.8CVSS7.4AI score0.10618EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2011/12/14 12:0 a.m.35 views

CVE-2011-4516

Heap-based buffer overflow in the jpccoxgetcompparms function in libjasper/jpc/jpccs.c in JasPer 1.900.1 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted numrlvls value in a coding style default COD marker segment in a JPEG2000 file...

6.8CVSS7.4AI score0.10618EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2011/12/14 12:0 a.m.37 views

CVE-2011-4517

The jpccrggetparms function in libjasper/jpc/jpccs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service heap memory corruption, via a crafte...

6.8CVSS7.3AI score0.10618EPSS
Exploits0References4
FreeBSD
FreeBSD
added 2011/12/09 12:0 a.m.34 views

jasper -- buffer overflow

Fedora reports: JasPer fails to properly decode marker segments and other sections in malformed JPEG2000 files. Malformed inputs can cause heap buffer overflows which in turn may result in execution of attacker-controlled code...

6.8CVSS5.9AI score0.10618EPSS
Exploits0References1
CERT
CERT
added 2011/12/08 12:0 a.m.30 views

JasPer memory corruption vulnerabilities

Overview Some versions of JasPer contain multiple vulnerabilities that may allow a remote, unauthenticated attacker to execute arbitrary code. Description JasPer fails to properly decode marker segments and other sections in malformed JPEG2000 files. Malformed inputs can cause heap buffer overflo...

6.8CVSS6.5AI score0.10618EPSS
Exploits0References3
NVD
NVD
added 2011/10/28 2:49 a.m.21 views

CVE-2011-3250

Integer overflow in Apple QuickTime before 7.7.1 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted movie file with JPEG2000 encoding...

9.3CVSS6.9AI score0.04811EPSS
Exploits0References4
Prion
Prion
added 2011/10/28 2:49 a.m.23 views

Integer overflow

Integer overflow in Apple QuickTime before 7.7.1 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted movie file with JPEG2000 encoding...

9.3CVSS8.2AI score0.04811EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2011/10/28 1:0 a.m.33 views

CVE-2011-3250

Integer overflow in Apple QuickTime before 7.7.1 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted movie file with JPEG2000 encoding...

7.2AI score0.04811EPSS
Exploits0References4
CVE
CVE
added 2011/10/28 1:0 a.m.137 views

CVE-2011-3250

CVE-2011-3250 describes an integer overflow in Apple QuickTime prior to version 7.7.1 that can be triggered by a crafted JPEG2000-encoded movie file , allowing remote code execution or a denial of service (application crash). The description indicates the vulnerability lies in QuickTime’s handlin...

9.3CVSS7.3AI score0.04811EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2011/10/28 12:0 a.m.37 views

QuickTime < 7.7.1 Multiple Vulnerabilities (Windows)

The version of QuickTime installed on the remote Windows host is older than 7.7.1 and may be affected by the following vulnerabilities : - A cross-site scripting issue exists in HTML files generated by the 'Save for Web' export feature. CVE-2011-3218 - A buffer overflow error exists in the handli...

9.3CVSS8.2AI score0.05134EPSS
Exploits7References23
Tenable Nessus
Tenable Nessus
added 2011/10/27 12:0 a.m.24 views

QuickTime < 7.7.1 Multiple Vulnerabilities

Binary data 6052.prm...

9.3CVSS7.8AI score0.05134EPSS
Exploits7References13
securityvulns
securityvulns
added 2011/08/05 12:0 a.m.93 views

APPLE-SA-2011-08-03-1 QuickTime 7.7

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2011-08-03-1 QuickTime 7.7 QuickTime 7.7 is now available and addresses the following: QuickTime Available for: Mac OS X v10.5.8, Mac OS X Server v10.5.8, Windows 7, Vista, XP SP2 or later Impact: Viewing a maliciously crafted pict file may...

9.3CVSS1.1AI score0.05084EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2011/08/04 12:0 a.m.42 views

QuickTime < 7.7 Multiple Vulnerabilities (Windows)

The version of QuickTime installed on the remote Windows host is older than 7.7. As such, it reportedly may be affected by the following vulnerabilities : - A buffer overflow in QuickTime's handling of pict files may lead to an application crash or arbitrary code execution. CVE-2011-0245 - A buff...

9.3CVSS7.2AI score0.60106EPSS
Exploits17References26
Tenable Nessus
Tenable Nessus
added 2011/08/04 12:0 a.m.27 views

QuickTime < 7.7 Multiple Vulnerabilities

Binary data 6000.prm...

9.3CVSS7AI score0.05084EPSS
Exploits2References16
NVD
NVD
added 2011/06/24 8:55 p.m.21 views

CVE-2011-0205

Heap-based buffer overflow in ImageIO in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted JPEG2000 image...

6.8CVSS7.8AI score0.03773EPSS
Exploits1References3
Prion
Prion
added 2011/06/24 8:55 p.m.16 views

Heap overflow

Heap-based buffer overflow in ImageIO in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted JPEG2000 image...

6.8CVSS8.4AI score0.03773EPSS
Exploits1References3Affected Software2
Cvelist
Cvelist
added 2011/06/24 8:0 p.m.25 views

CVE-2011-0205

Heap-based buffer overflow in ImageIO in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted JPEG2000 image...

6.7AI score0.03773EPSS
Exploits1References3
CVE
CVE
added 2011/06/24 8:0 p.m.54 views

CVE-2011-0205

CVE-2011-0205 : Heap-based buffer overflow in Apple ImageIO on Mac OS X prior to 10.6.8 can be triggered by a crafted JPEG2000 image, potentially allowing remote code execution or a denial of service (application crash). The available data specifies the vulnerable component (ImageIO) and the impa...

6.8CVSS6.6AI score0.03773EPSS
Exploits1References3Affected Software2
Rows per page
Query Builder