iDefense Security Advisory 01.05.07: Opera Software Opera Web Browser JPG Image DHT Marker Heap Corruption Vulnerability

Opera Software Opera Web Browser JPG Image DHT Marker Heap Corruption Vulnerability iDefense Security Advisory 01.05.07 http://labs.idefense.com/intelligence/vulnerabilities/ Jan 05, 2007 I. BACKGROUND Opera is a cross-platform web browser. More information is available at http://www.opera.com/ I...

GLSA-200612-20 : imlib2: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200612-20 imlib2: Multiple vulnerabilities M. Joonas Pihlaja discovered several buffer overflows in loaderargb.c, loaderpng.c, loaderlbm.c, loaderjpeg.c, loadertiff.c, loadertga.c, loaderpnm.c and an out-of-bounds memory read acce...

FreeBSD : Imlib2 -- multiple image file processing vulnerabilities (92442c4b-6f4a-11db-bd28-0012f06707f0)

Secunia reports : Some vulnerabilities have been reported in imlib2, which can be exploited by malicious people to cause a DoS Denial of Service or potentially compromise an application using the library. The vulnerabilities are caused due to unspecified errors within the processing of JPG, ARGB,...

USN-376-2: imlib2 regression fix

USN-376-1 provided an update to imlib2 to fix several security vulnerabilities. Unfortunately the update broke JPG file handling in certain situations. This update corrects this problem. We apologize for the inconvenience...

Clever use of WinRAR will be confidential camouflage was imperceptible-vulnerability warning-the black bar safety net

WinRAR is everyone commonly used compression/decompression program, in addition to this we also often put WinRAR as encryption software to use, in the compressed file when the Set password can protect the data of the object. But specifically for WinRAR password hack software very much, although...

CVE-2006-3555

Multiple cross-site scripting XSS vulnerabilities in submit.php in PHP-Fusion before 6.01.3 allow remote attackers to inject arbitrary web script or HTML by using editprofile.php to upload a 1 avatar or 2 forum image attachment that has a .gif or .jpg extension, and begins with a GIF header...

CVE-2006-1668

newimage.php in Eric Gerdes Crafty Syntax Image Gallery CSIG aka PHP thumbnail Photo Gallery 3.1g and earlier allows remote authenticated users to upload and execute arbitrary PHP code via a multipart/form-data POST with a .jpg filename in the fullimage parameter and the ext parameter set to .php...

CVE-2005-4621

Cross-site scripting XSS vulnerability in the editavatar page in vBulletin 3.5.1 allows remote attackers to inject arbitrary web script or HTML via a URL in the remote avatar url field, in which the URL generates a parsing error, and possibly requiring a trailing extension such as .jpg...

CVE-2005-3484

Directory traversal vulnerability in NeroNET 1.2.0.2 and earlier allows remote attackers to read arbitrary files with certain file extensions such as ZIP, AVI, JPG, TXT, and HTML via ".." and hex-encoded 1 slash "/" "%2f" or 2 backslash "" "%5c" sequences...

CVE-2005-3312

The HTML rendering engine in Microsoft Internet Explorer 6.0 allows remote attackers to conduct cross-site scripting XSS attacks via HTML in corrupted images and other files such as .GIF, JPG, and WAV, which is rendered as HTML when the user clicks on the link, even though the web server response...

CVE-2000-0415

Outlook Express 4.x is affected by a buffer overflow triggered by mail/news messages with a .jpg or .bmp attachment having a long filename. The vulnerability is reported to allow denial of service. The connected documents corroborate the issue as described for Outlook Express 4.x; no specific exp...