Lucene search
+L

22 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2017-15941

Malware in sbrugna...

7.8CVSS8.5AI score0.01561EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2023/02/15 4:48 a.m.4 views

SUSE CVE-2017-6887

A boundary error within the "parsetiffifd" function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to "DSLR-A100" and containing multiple sequences of 0x100 and 0x14A TAGs...

5.6CVSS9.2AI score0.01561EPSS
Exploits0References4
Veracode
Veracode
added 2020/05/10 11:23 p.m.39 views

Arbitrary Code Execution

libraw is vulnerable to arbitrary code execution. The vulnerability exists as a boundary error within the "parsetiffifd" function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to...

7.8CVSS5.9AI score0.01561EPSS
Exploits0References5Affected Software1
RedhatCVE
RedhatCVE
added 2017/05/17 3:9 p.m.33 views

CVE-2017-6887

A boundary error within the "parsetiffifd" function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to "DSLR-A100" and containing multiple sequences of 0x100 and 0x14A TAGs...

7.8CVSS3.6AI score0.01561EPSS
Exploits0References1
NVD
NVD
added 2017/05/16 4:29 p.m.16 views

CVE-2017-6887

A boundary error within the "parsetiffifd" function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to "DSLR-A100" and containing multiple sequences of 0x100 and 0x14A TAGs...

7.8CVSS8.5AI score0.01561EPSS
Exploits0References5
Prion
Prion
added 2017/05/16 4:29 p.m.20 views

Memory corruption

A boundary error within the "parsetiffifd" function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to "DSLR-A100" and containing multiple sequences of 0x100 and 0x14A TAGs...

6.8CVSS8AI score0.01561EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2017/05/16 4:29 p.m.5 views

DEBIAN-CVE-2017-6887

A boundary error within the "parsetiffifd" function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to "DSLR-A100" and containing multiple sequences of 0x100 and 0x14A TAGs...

7.8CVSS7.4AI score0.01561EPSS
Exploits0References1
OSV
OSV
added 2017/05/16 4:29 p.m.5 views

ALPINE-CVE-2017-6887

A boundary error within the "parsetiffifd" function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to "DSLR-A100" and containing multiple sequences of 0x100 and 0x14A TAGs...

7.8CVSS7AI score0.01561EPSS
Exploits0References1
OSV
OSV
added 2017/05/16 4:29 p.m.31 views

CVE-2017-6887

A boundary error within the "parsetiffifd" function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to "DSLR-A100" and containing multiple sequences of 0x100 and 0x14A TAGs...

7.8CVSS7.6AI score
Exploits0References5
CVE
CVE
added 2017/05/16 3:0 p.m.107 views

CVE-2017-6887

LibRaw contains a boundary error in parse_tiff_ifd() (internal/dcraw_common.cpp) that enables memory corruption when processing a crafted KDC TIFF-like file; affected versions are LibRaw before 0.18.2. The issue is demonstrated with a file where model is DSLR-A100 and contains multiple sequences ...

7.8CVSS8.4AI score0.01561EPSS
Exploits0References5Affected Software1
AlpineLinux
AlpineLinux
added 2017/05/16 3:0 p.m.66 views

CVE-2017-6887

A boundary error within the "parsetiffifd" function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to "DSLR-A100" and containing multiple sequences of 0x100 and 0x14A TAGs...

7.8CVSS8.7AI score0.01561EPSS
Exploits0
Debian CVE
Debian CVE
added 2017/05/16 3:0 p.m.45 views

CVE-2017-6887

A boundary error within the "parsetiffifd" function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to "DSLR-A100" and containing multiple sequences of 0x100 and 0x14A TAGs...

7.8CVSS8.7AI score0.01561EPSS
Exploits0
Cvelist
Cvelist
added 2017/05/16 3:0 p.m.28 views

CVE-2017-6887

A boundary error within the "parsetiffifd" function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to "DSLR-A100" and containing multiple sequences of 0x100 and 0x14A TAGs...

8.6AI score0.01561EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2017/05/16 12:0 a.m.28 views

CVE-2017-6887

A boundary error within the "parsetiffifd" function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to "DSLR-A100" and containing multiple sequences of 0x100 and 0x14A TAGs...

7.8CVSS6.9AI score0.01561EPSS
Exploits0References4
OSV
OSV
added 2017/05/16 12:0 a.m.6 views

UBUNTU-CVE-2017-6887

A boundary error within the "parsetiffifd" function internal/dcrawcommon.cpp in LibRaw versions before 0.18.2 can be exploited to cause a memory corruption via e.g. a specially crafted KDC file with model set to "DSLR-A100" and containing multiple sequences of 0x100 and 0x14A TAGs...

7.8CVSS6.9AI score0.01561EPSS
Exploits0References5
NVD
NVD
added 2014/01/09 12:55 a.m.25 views

CVE-2013-5358

Picasa3.exe in Google Picasa before 3.9.0 Build 137.69 allows remote attackers to trigger memory corruption via a crafted TIFF tag, as demonstrated using a KDC file with a DSLR-A100 model and certain sequences of tags...

7.5CVSS6.6AI score0.01272EPSS
Exploits0References4
NVD
NVD
added 2014/01/09 12:55 a.m.24 views

CVE-2013-5359

Stack-based buffer overflow in Picasa3.exe in Google Picasa before 3.9.0 Build 137.69 might allow remote attackers to execute arbitrary code via a crafted RAW file, as demonstrated using a KDC file with a certain size...

7.5CVSS7.8AI score0.02303EPSS
Exploits0References4
Prion
Prion
added 2014/01/09 12:55 a.m.23 views

Memory corruption

Picasa3.exe in Google Picasa before 3.9.0 Build 137.69 allows remote attackers to trigger memory corruption via a crafted TIFF tag, as demonstrated using a KDC file with a DSLR-A100 model and certain sequences of tags...

7.5CVSS7.2AI score0.01272EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2014/01/09 12:55 a.m.15 views

Stack overflow

Stack-based buffer overflow in Picasa3.exe in Google Picasa before 3.9.0 Build 137.69 might allow remote attackers to execute arbitrary code via a crafted RAW file, as demonstrated using a KDC file with a certain size...

7.5CVSS8.5AI score0.02303EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2014/01/09 12:0 a.m.61 views

CVE-2013-5359

Affected software: Google Picasa. The CVE-2013-5359 issue is a stack-based buffer overflow in Picasa3.exe triggered by parsing a specially crafted KDC file (71 bytes), leading to arbitrary code execution. Public details confirm the vulnerability exists in Google Picasa before 3.9.0 Build 137.69, ...

7.5CVSS8.1AI score0.02303EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder