19 matches found
EUVD-2017-15145
Malware in sbrugna...
Memory Corruption Vulnerability in Taiwan Security Technology AT Upper Unit (AT HMI System)
Ltd. is a wholly foreign owned enterprise established in China on July 1, 2000 by Antai International Investment Singapore Pte Ltd, a subsidiary of TECO Group, a renowned Taiwanese multinational corporation. A memory corruption vulnerability exists in Taiwan Security Technology's AT Upper Unit AT...
CVE-2020-6065
An exploitable out-of-bounds write vulnerability exists in the bmpparsing function of the igcore19d.dll library of Accusoft ImageGear, version 19.5.0. A specially crafted BMP file can cause an out-of-bounds write, resulting in a remote code execution. An attacker needs to provide a malformed file...
Heap overflow
CImg through 2.6.7 has a heap-based buffer overflow in loadbmp in CImg.h because of erroneous memory allocation for a malformed BMP image...
Security update for libqt5-qtbase (moderate)
openSUSE Security Update: Security update for libqt5-qtbase Announcement ID: openSUSE-SU-2019:0265-1 Rating: moderate References: 1096328 1099874 1108889 1118595 1118596 1120639 Cross-References: CVE-2018-15518 CVE-2018-19873 Affected Products: openSUSE Leap 15.0 An update that solves two...
SUSE SLED12 / SLES12 Security Update : libqt5-qtbase (SUSE-SU-2018:4179-1)
This update for libqt5-qtbase fixes the following issues : Security issues fixed : CVE-2018-15518: Fixed double free in QXmlStreamReader bsc1118595 CVE-2018-19873: Fixed Denial of Service on malformed BMP file in QBmpHandler bsc1118596 Note that Tenable Network Security has extracted the precedin...
Valve: Malformed .BMP file in Counter-Strike 1.6 may cause shellcode injection
With the vulnerability of the GoldSource Engine, the server is able to perform remote code execution on the client, overwriting the stack when reading the BMP file. The problem is in the LoadBMP8 function, which is executed when the player connects to the server, by loading the...
Memory Corruption Vulnerability in Acme CADSee's Handling of BMP Files
Acme CADSee is a specialized viewer for CAD drawing files. Acme CADSee suffers from a memory corruption vulnerability in the handling of BMP format files, which can be exploited to cause an attacker to crash the program by constructing a malformed BMP format file that can be successfully exploite...
Memory Corruption Vulnerability in Pomelo Camera's Handling of BMP Files
Pomelo Camera POMELO is a mobile photography + photo beautification APP from Meitu Xiu Xiu. A memory corruption vulnerability exists in Pomelo Camera's handling of BMP files. An attacker can exploit the vulnerability to crash the program by constructing a malformed BMP image. Successful...
gdk-pixbuf2 -- heap overflow and DoS
Gustavo Grieco reports: We found a heap overflow and a DoS in the gdk-pixbuf implementation triggered by the scaling of a malformed bmp...
IrfanView 3.99 Multiple BMP Denial of Service Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/23318/info IrfanView is prone to multiple denial-of-service vulnerabilities because the application fails to properly handle malformed BMP image files. Successfully exploiting these issues allows attackers to crash the...
Ubuntu Update for gimp vulnerabilities USN-880-1
Ubuntu Update for Linux kernel vulnerabilities USN-880-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN8801.nasl 7965 2017-12-01 07:38:25Z santu $ Ubuntu Update for gimp vulnerabilities USN-880-1 Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH,...
CVE-2008-5870
The CVE-2008-5870 entry concerns FastStone Image Viewer 3.6. It describes a vulnerability where a user-assisted attacker can cause an application crash (denial of service) by supplying a malformed BMP image with very large width and height values, with the issue noted as possibly related to CVE-2...
FastStone Image Viewer 3.6 (malformed bmp image) DoS Exploit
No description provided by source. Name : FastStone Image Viewer v3.6 malformed bmp image DoS Exploit Credit : suN8Hclf DaRk-CodeRs Group, [email protected] Download: : http://www.FastStone.org Greetz : Luigi Auriemma, 0in, cOndemned, e.wiZz!, Gynvael Coldwind, Katharsis, all from dark-coder...
faststone-dos.txt
Name : FastStone Image Viewer v3.6 malformed bmp image DoS Exploit Credit : suN8Hclf DaRk-CodeRs Group, [email protected] Download: : http://www.FastStone.org Greetz : Luigi Auriemma, 0in, cOndemned, e.wiZz!, Gynvael Coldwind, Katharsis, all from dark-coders and others; PoC:...
FastStone Image Viewer 3.6 (malformed bmp image) Crash Exploit
Exploit for unknown platform in category dos / poc ============================================================== FastStone Image Viewer 3.6 malformed bmp image Crash Exploit ============================================================== Name : FastStone Image Viewer v3.6 malformed bmp image DoS...
FastStone Image Viewer 3.6 (malformed bmp image) Crash Exploit
No description provided by source. Name : FastStone Image Viewer v3.6 malformed bmp image DoS Exploit Credit : suN8Hclf DaRk-CodeRs Group, [email protected] Download: : http://www.FastStone.org Greetz : Luigi Auriemma, 0in, cOndemned, e.wiZz!, Gynvael Coldwind, Katharsis, all from dark-coder...
FastStone Image Viewer 3.6 - '.BMP' Image Crash
Name : FastStone Image Viewer v3.6 malformed bmp image DoS Exploit Credit : suN8Hclf DaRk-CodeRs Group, [email protected] Download: : http://www.FastStone.org Greetz : Luigi Auriemma, 0in, cOndemned, e.wiZz!, Gynvael Coldwind, Katharsis, all from dark-coders and others; PoC:...
CVE-2008-3020
Microsoft Office 2000 SP3 and XP SP3; Office Converter Pack; and Works 8 do not properly parse the length of a BMP file, which allows remote attackers to execute arbitrary code via a crafted BMP file, aka the "Malformed BMP Filter Vulnerability."...