Lucene search
K

4 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:7 a.m.5 views

SUSE CVE-2019-18218

cdfreadpropertyinfo in cdf.c in file through 5.37 does not restrict the number of CDFVECTOR elements, which allows a heap-based buffer overflow 4-byte out-of-bounds write...

9.8CVSS8.9AI score0.0185EPSS
Exploits1References59
BDU FSTEC
BDU FSTEC
added 2020/04/23 12:0 a.m.8 views

The vulnerability of the cdf_readproperty_info function in the file classification tool allows a perpetrator to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the cdfreadpropertyinfo function of the file classification tool is related to a buffer overflow error data exceeding 4 bytes. Exploiting this vulnerability could allow an attacker to gain access to confidential data, compromise its integrity, and cause service failures...

10CVSS7.8AI score0.0185EPSS
Exploits1References18Affected Software6
RedHat Linux
RedHat Linux
added 2016/05/10 6:32 p.m.8 views

file: incomplete fix for CVE-2012-1571 in cdf_read_property_info

It was found that the fix for CVE-2012-1571 was incomplete; the File Information fileinfo extension did not correctly parse certain Composite Document Format CDF files. A remote attacker could use this flaw to crash a PHP application using fileinfo via a specially crafted CDF file...

6.5CVSS7.4AI score0.20237EPSS
Exploits2References4
OSV
OSV
added 2014/07/09 12:0 a.m.5 views

UBUNTU-CVE-2014-3487

The cdfreadpropertyinfo function in file before 5.19, as used in the Fileinfo component in PHP before 5.4.30 and 5.5.x before 5.5.14, does not properly validate a stream offset, which allows remote attackers to cause a denial of service application crash via a crafted CDF file...

4.3CVSS7.2AI score0.14927EPSS
Exploits0References5
Rows per page
Query Builder