EUVD-2015-4714

Malware in sbrugna...

RHEL 6 : libwmf (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gd: additional overflows CVE-2004-0941 - libwmf: Memory allocation failure in wmfmalloc CVE-2016-9011 -...

CVE-2016-9011

The wmfmalloc function in api.c in libwmf 0.2.8.4 allows remote attackers to cause a denial of service application crash via a crafted wmf file, which triggers a memory allocation failure...

CVE-2016-9011

The wmfmalloc function in api.c in libwmf 0.2.8.4 allows remote attackers to cause a denial of service application crash via a crafted wmf file, which triggers a memory allocation failure...

PT-2017-9925 · Sourceforge +2 · Libwmf +2

Name of the Vulnerable Software and Affected Versions: libwmf version 0.2.8.4 Description: The issue allows remote attackers to cause a denial of service, resulting in an application crash, by utilizing a crafted wmf file. This triggers a memory allocation failure in the wmf malloc function...

CVE-2015-4696

Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash via a crafted WMF file to the 1 wmf2gd or 2 wmf2eps command...

CVE-2015-4696

Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash via a crafted WMF file to the 1 wmf2gd or 2 wmf2eps command...

CVE-2015-4695

meta.h in libwmf 0.2.8.4 allows remote attackers to cause a denial of service out-of-bounds read via a crafted WMF file...

CVE-2015-4696

Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash via a crafted WMF file to the 1 wmf2gd or 2 wmf2eps command...

PT-2015-4915 · Linux +5 · Libwmf +5

Name of the Vulnerable Software and Affected Versions: libwmf version 0.2.8.4 Description: A heap-based buffer overflow issue allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted BMP image. Recommendations: For libwmf version 0.2.8.4, consider...

UBUNTU-CVE-2015-4696

Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash via a crafted WMF file to the 1 wmf2gd or 2 wmf2eps command...

The vulnerability of the Red Hat Enterprise Linux operating system allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the libwmf-0.2.8.3 package for the Red Hat Enterprise Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. This vulnerability can be exploited remotely...

PT-2009-1069 · Gd +3 · Gd Library +4

Name of the Vulnerable Software and Affected Versions: libwmf versions 0.2.8.3 through 0.2.8.4 libwmf-devel versions 0.2.8.3 through 0.2.8.4 Description: The issue is related to a use-after-free vulnerability in the embedded GD library in libwmf, which allows context-dependent attackers to cause ...

CVE-2006-3376

Integer overflow in player.c in libwmf 0.2.8.4, as used in multiple products including 1 wv, 2 abiword, 3 freetype, 4 gimp, 5 libgsf, and 6 imagemagick allows remote attackers to execute arbitrary code via the MaxRecordSize header field in a WMF file...