491 matches found
Tile Puzzle - Landscapes - Dangerous filesystem permissions, WebView code execution vulnerabilities
HackApp vulnerability scanner discovered that application Tile Puzzle - Landscapes published at the 'play' market has multiple vulnerabilities...
Piano Tile - Dynamic Code Loading, External URLs, Native code usage vulnerabilities
HackApp vulnerability scanner discovered that application Piano Tile published at the 'play' market has multiple vulnerabilities...
OpenJPEG Denial of Service Vulnerability (CNVD-2016-01726)
OpenJPEG is a C-based open source JPEG 2000 codec . A security vulnerability exists in the 'opjtcdfreetile' function of OpenJPEG. The vulnerability can be exploited by an attacker to cause a denial of service out-of-bounds read with a specially crafted JPEG 2000 image...
The vulnerability of the FFmpeg multimedia library, which allows a hacker to trigger a service failure
The vulnerability of the jpeg2000decodetile function libavcodec/jpeg2000dec.c in the FFmpeg multimedia library is due to buffer overflow. Exploiting this vulnerability can allow an attacker to cause a service failure buffer overflow by using specially crafted JPEG 2000 format data...
ALPINE-CVE-2016-2213
The jpeg2000decodetile function in libavcodec/jpeg2000dec.c in FFmpeg before 2.8.6 allows remote attackers to cause a denial of service out-of-bounds array read access via crafted JPEG 2000 data...
FFmpeg 'init_tile' Function Denial of Service Vulnerability
FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A security vulnerability exists in the 'inittile' function in the libavcodec/jpeg2000dec.c file in versions of FFmpeg prior to 2.8.2. Due to the program failing to enforce maximum and minim...
DEBIAN-CVE-2015-8219
The inittile function in libavcodec/jpeg2000dec.c in FFmpeg before 2.8.2 does not enforce minimum-value and maximum-value constraints on tile coordinates, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via crafted JP...
UBUNTU-CVE-2015-8219
The inittile function in libavcodec/jpeg2000dec.c in FFmpeg before 2.8.2 does not enforce minimum-value and maximum-value constraints on tile coordinates, which allows remote attackers to cause a denial of service out-of-bounds array access or possibly have unspecified other impact via crafted JP...
Concrete CMS: Stored XSS in Feature tile
XSS payload can be executed and saved permanently in Feature tile . Poc code: "...
Concrete CMS: Stored XSS on Blog's page Tile
In blog page Custom Title Text , xss payload can be executed and saved permanently . Poc: "...
Mozilla: Out-of-bounds write with WebM video (MFSA 2014-77)
The gettile function in Mozilla Firefox before 33.0, Firefox ESR 31.x before 31.2, and Thunderbird 31.x before 31.2 allows remote attackers to cause a denial of service out-of-bounds write and application crash or possibly execute arbitrary code via WebM frames with invalid tile sizes that are...
DEBIAN-CVE-2014-1578
The gettile function in Mozilla Firefox before 33.0, Firefox ESR 31.x before 31.2, and Thunderbird 31.x before 31.2 allows remote attackers to cause a denial of service out-of-bounds write and application crash or possibly execute arbitrary code via WebM frames with invalid tile sizes that are...
Mozilla: Out-of-bounds write with WebM video (MFSA 2014-77)
The gettile function in Mozilla Firefox before 33.0, Firefox ESR 31.x before 31.2, and Thunderbird 31.x before 31.2 allows remote attackers to cause a denial of service out-of-bounds write and application crash or possibly execute arbitrary code via WebM frames with invalid tile sizes that are...
libvpx -- out-of-bounds write
The Mozilla Project reports: Using the Address Sanitizer tool, security researcher Abhishek Arya Inferno of the Google Chrome Security Team found an out-of-bounds write when buffering WebM format video containing frames with invalid tile sizes. This can lead to a potentially exploitable crash...
Uzbey: SQL injection, time zoom script, tile ID
The tile ID parameter to the tile zoom script is vulnerable to SQL injection. The following will cause the script to run a benchmark, returning an error 8-10 seconds later: https://staging.uzbey.com/zoom-image/BENCHMARK10000000,SHA11...
Uzbey: SQL injection, tile ID
The tile ID parameter to the tile image script is vulnerable to SQL injection. The following will cause the script to run a benchmark, returning 8-10 seconds later: https://staging.uzbey.com/tiles1600/693/sleep10...
SiteServer 3.6.4 /siteserver/bbs/background_post.aspx SQL注入漏洞
SiteServer 3.6.4 /siteserver/bbs/backgroundpost.aspx文件Tile参数没有合适过滤,导致SQL注入漏洞。 SiteServer 3.6.4...
Heap overflow
The kempfdecodetile function in libavcodec/g2meet.c in FFmpeg before 2.0.1 allows remote attackers to cause a denial of service out-of-bounds heap write via a G2M4 encoded file...
Fedora Update for kmahjongg FEDORA-2013-13112
Check for the Version of kmahjongg OpenVAS Vulnerability Test Fedora Update for kmahjongg FEDORA-2013-13112 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...
Fedora Update for kmahjongg FEDORA-2013-13499
Check for the Version of kmahjongg OpenVAS Vulnerability Test Fedora Update for kmahjongg FEDORA-2013-13499 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under t...