CVE-2012-2777

Unspecified vulnerability in the decodepic function in libavcodec/cavsdec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to "width/height changing in CAVS," a different vulnerability than CVE-2012-2784...

CVE-2012-2784

Unspecified vulnerability in the decodepic function in libavcodec/cavsdec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to "width/height changing in CAVS," a different vulnerability than CVE-2012-2777...

CVE-2012-2804

Unspecified vulnerability in libavcodec/indeo3.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8.5 has unknown impact and attack vectors, related to "reallocation code" and the luma height and width...

CVE-2012-2772

Unspecified vulnerability in the ffrv34decodeframe function in libavcodec/rv34.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to "width/height changing with frame threading."...

CVE-2012-2787

Unspecified vulnerability in the decodeframe function in libavcodec/indeo4.c in FFmpeg before 0.11 and Libav 0.8.x before 0.8.4 has unknown impact and attack vectors, related to the "setup width/height."...

CVE-2012-2777

Unspecified vulnerability in the decodepic function in libavcodec/cavsdec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to "width/height changing in CAVS," a different vulnerability than CVE-2012-2784...

CVE-2012-2784

Unspecified vulnerability in the decodepic function in libavcodec/cavsdec.c in FFmpeg before 0.11, and Libav 0.7.x before 0.7.7 and 0.8.x before 0.8.4, has unknown impact and attack vectors, related to "width/height changing in CAVS," a different vulnerability than CVE-2012-2777...

DEBIAN-CVE-2012-2370

Multiple integer overflows in the readbitmapfiledata function in io-xbm.c in gdk-pixbuf before 2.26.1 allow remote attackers to cause a denial of service application crash via a negative 1 height or 2 width in an XBM file, which triggers a heap-based buffer overflow...

ZDI-12-085 : RealNetworks RealPlayer dmp4 esds Width Remote Code Execution Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ZDI-12-085 : RealNetworks RealPlayer dmp4 esds Width Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-12-085 June 6, 2012 - -- CVE ID: CVE-2011-4261 - -- CVSS: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - -- Affected Vendors:...

RealNetworks RealPlayer RV10 Encoded Height/Width Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of RealNetworks RealPlayer. User interaction is required in that a target must visit a malicious page or open a malicious file. The flaw exists within the RV10 encoded data in the rv10.dll component...

Real Networks RealPlayer < 15.0.2.72 Multiple Vulnerabilities

Binary data 6311.prm...

RealNetwork RealPlayer MPG Width Integer Underflow Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Realplayer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the way RealPlayer...

CVE-2010-4901

Multiple cross-site scripting XSS vulnerabilities in charmap.php in MySource Matrix 3.28.3 allow remote attackers to inject arbitrary web script or HTML via the 1 height or 2 width parameter...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in charmap.php in MySource Matrix 3.28.3 allow remote attackers to inject arbitrary web script or HTML via the 1 height or 2 width parameter...

CVE-2010-4901

Multiple cross-site scripting XSS vulnerabilities in charmap.php in MySource Matrix 3.28.3 allow remote attackers to inject arbitrary web script or HTML via the 1 height or 2 width parameter...

BuzzyWall 1.3.2 File Disclosure

BuzzyWall 1.3.2 resolute.php Local File Disclosure Exploit Found by cr4wl3r @hackb0x d0rk: no d0rk f0r kiddi0ts Script: http://sourceforge.net/projects/buzzywall/files/buzzywall/ err0r c0de resolute.php ?PHP header "Content-type: image/jpeg"; $img = $GET'img'; header'Content-Disposition:...

eWebeditoR3. 8 for php arbitrary file upload EXP-vulnerability warning-the black bar safety net

! titleeWebeditoR3. 8 for php any file on the EXP/title form action="" method=post enctype="multipart/form-data" INPUT TYPE="hidden" name="MAXFILESIZE" value="5 1 2 0 0 0" A href="http://hi.baidu.com/fc/editor/input"URL:input type=text name=url value="" size=1 0 0br INPUT TYPE="hidden"...

Gimp: Integer overflow in the BMP image file plugin

Integer overflow in the ReadImage function in plug-ins/file-bmp/bmp-read.c in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a BMP file with crafted width and height values that trigger a heap-based buffer overflow...

DEBIAN-CVE-2010-3276

libdirectxplugin.dll in VideoLAN VLC Media Player before 1.1.8 allows remote attackers to execute arbitrary code via a crafted width in an NSV file...

Fedora 12 : freetype-2.3.11-6.fc12 (2010-15785)

Mon Oct 4 2010 Marek Kasik 2.3.11-6 - Add freetype-2.3.11-CVE-2010-2805.patch Fix comparison. - Add freetype-2.3.11-CVE-2010-2806.patch Protect against negative stringsize. Fix comparison. - Add freetype-2.3.11-CVE-2010-2808.patch Check the total length of collected POST segments. - Add...