339 matches found
Heap overflow
Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted "run-length count" in an image in a WMF file...
Heap overflow
Heap-based buffer overflow in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted BMP image...
Design/Logic Flaw
Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash via a crafted WMF file to the 1 wmf2gd or 2 wmf2eps command...
Out-of-bounds
meta.h in libwmf 0.2.8.4 allows remote attackers to cause a denial of service out-of-bounds read via a crafted WMF file...
CVE-2015-0848
Heap-based buffer overflow in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted BMP image...
CVE-2015-4696
CVE-2015-4696 is a use-after-free/processing flaw in libwmf 0.2.8.4 that can be triggered by opening specially crafted WMF files and may crash the application or allow arbitrary code execution via wmf2gd or wmf2eps. Multiple advisories (CentOS/CentOS-ASA, Debian DSA-3302, Red Hat/ALAS-604, Fedora...
CVE-2015-4588
CVE-2015-4588 is a heap-based buffer overflow in the DecodeImage function of libwmf 0.2.8.4. It allows remote attackers to crash or possibly execute arbitrary code via a crafted WMF image (embedded BMP run-length). Public advisories (Debian DSA-3302-1, CentOS/CESA-2015:1917, Fedora updates, ALAS-...
CVE-2015-0848
CVE-2015-0848 affects libwmf (0.2.8.4). A heap-based buffer overflow occurs when processing WMF files with embedded BMP images, enabling remote attackers to crash or possibly execute arbitrary code. Public advisories/updates across distributions fix libwmf to newer releases (e.g., 0.2.8.4-14 and ...
CVE-2015-4695
meta.h in libwmf 0.2.8.4 allows remote attackers to cause a denial of service out-of-bounds read via a crafted WMF file...
CVE-2015-4695
Summary (CVE-2015-4695) : libwmf 0.2.8.4 contains a flaw in meta.h that allows a remote attacker to trigger an out-of-bounds read via a crafted WMF file, potentially crashing the application or enabling arbitrary code execution. Impact and exploit details are consistently described across multipl...
CVE-2015-4696
Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash via a crafted WMF file to the 1 wmf2gd or 2 wmf2eps command...
CVE-2015-0848
Heap-based buffer overflow in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted BMP image...
CVE-2015-4695
meta.h in libwmf 0.2.8.4 allows remote attackers to cause a denial of service out-of-bounds read via a crafted WMF file...
CVE-2015-4696
Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash via a crafted WMF file to the 1 wmf2gd or 2 wmf2eps command...
CVE-2015-0848
Heap-based buffer overflow in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted BMP image...
UBUNTU-CVE-2015-4696
Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash via a crafted WMF file to the 1 wmf2gd or 2 wmf2eps command...
PT-2015-6672 · Linux +5 · Libwmf +5
Name of the Vulnerable Software and Affected Versions: libwmf version 0.2.8.4 Description: The issue allows remote attackers to cause a denial of service, specifically an out-of-bounds read, by using a crafted WMF file. Recommendations: For libwmf version 0.2.8.4, update to a newer version that...
PT-2015-6673 · Sourceforge +5 · Libwmf +5
Name of the Vulnerable Software and Affected Versions: libwmf version 0.2.8.4 Description: The issue is related to a use-after-free vulnerability that can be triggered by remote attackers using a crafted WMF file. This can cause a denial of service, leading to a crash, specifically when the file ...
PT-2015-6631 · Sourceforge +5 · Libwmf +5
Name of the Vulnerable Software and Affected Versions: libwmf version 0.2.8.4 Description: The issue is related to a heap-based buffer overflow in the DecodeImage function, which can be triggered by a crafted "run-length count" in an image in a WMF file. This can cause a denial of service crash o...
CVE-2015-4696
Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service crash via a crafted WMF file to the 1 wmf2gd or 2 wmf2eps command...