979 matches found
CVE-2011-4517
The jpccrggetparms function in libjasper/jpc/jpccs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service heap memory corruption, via a crafte...
CVE-2011-4516
Heap-based buffer overflow in the jpccoxgetcompparms function in libjasper/jpc/jpccs.c in JasPer 1.900.1 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted numrlvls value in a coding style default COD marker segment in a JPEG2000 file...
SuSE 10 Security Update : jasper (ZYPP Patch Number 7878)
The following bug has been fixed : - Specially crafted JPEG2000 files could have caused a heap buffer overflow in jasper. CVE-2011-4516 / CVE-2011-4517 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc';...
CVE-2011-4516
Heap-based buffer overflow in the jpccoxgetcompparms function in libjasper/jpc/jpccs.c in JasPer 1.900.1 allows remote attackers to execute arbitrary code or cause a denial of service memory corruption via a crafted numrlvls value in a coding style default COD marker segment in a JPEG2000 file...
CVE-2011-4517
The jpccrggetparms function in libjasper/jpc/jpccs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote attackers to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service heap memory corruption, via a crafte...
jasper -- buffer overflow
Fedora reports: JasPer fails to properly decode marker segments and other sections in malformed JPEG2000 files. Malformed inputs can cause heap buffer overflows which in turn may result in execution of attacker-controlled code...
JasPer memory corruption vulnerabilities
Overview Some versions of JasPer contain multiple vulnerabilities that may allow a remote, unauthenticated attacker to execute arbitrary code. Description JasPer fails to properly decode marker segments and other sections in malformed JPEG2000 files. Malformed inputs can cause heap buffer overflo...
CVE-2011-3250
Integer overflow in Apple QuickTime before 7.7.1 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted movie file with JPEG2000 encoding...
Integer overflow
Integer overflow in Apple QuickTime before 7.7.1 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted movie file with JPEG2000 encoding...
CVE-2011-3250
Integer overflow in Apple QuickTime before 7.7.1 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted movie file with JPEG2000 encoding...
CVE-2011-3250
CVE-2011-3250 describes an integer overflow in Apple QuickTime prior to version 7.7.1 that can be triggered by a crafted JPEG2000-encoded movie file , allowing remote code execution or a denial of service (application crash). The description indicates the vulnerability lies in QuickTime’s handlin...
QuickTime < 7.7.1 Multiple Vulnerabilities (Windows)
The version of QuickTime installed on the remote Windows host is older than 7.7.1 and may be affected by the following vulnerabilities : - A cross-site scripting issue exists in HTML files generated by the 'Save for Web' export feature. CVE-2011-3218 - A buffer overflow error exists in the handli...
QuickTime < 7.7.1 Multiple Vulnerabilities
Binary data 6052.prm...
APPLE-SA-2011-08-03-1 QuickTime 7.7
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 APPLE-SA-2011-08-03-1 QuickTime 7.7 QuickTime 7.7 is now available and addresses the following: QuickTime Available for: Mac OS X v10.5.8, Mac OS X Server v10.5.8, Windows 7, Vista, XP SP2 or later Impact: Viewing a maliciously crafted pict file may...
QuickTime < 7.7 Multiple Vulnerabilities (Windows)
The version of QuickTime installed on the remote Windows host is older than 7.7. As such, it reportedly may be affected by the following vulnerabilities : - A buffer overflow in QuickTime's handling of pict files may lead to an application crash or arbitrary code execution. CVE-2011-0245 - A buff...
QuickTime < 7.7 Multiple Vulnerabilities
Binary data 6000.prm...
CVE-2011-0205
Heap-based buffer overflow in ImageIO in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted JPEG2000 image...
Heap overflow
Heap-based buffer overflow in ImageIO in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted JPEG2000 image...
CVE-2011-0205
Heap-based buffer overflow in ImageIO in Apple Mac OS X before 10.6.8 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted JPEG2000 image...
CVE-2011-0205
CVE-2011-0205 : Heap-based buffer overflow in Apple ImageIO on Mac OS X prior to 10.6.8 can be triggered by a crafted JPEG2000 image, potentially allowing remote code execution or a denial of service (application crash). The available data specifies the vulnerable component (ImageIO) and the impa...