195 matches found
SUSE CVE-2016-7533
The ReadWPGImage function in coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service out-of-bounds read via a crafted WPG file...
SUSE CVE-2016-7996
Heap-based buffer overflow in the WPG format reader in GraphicsMagick 1.3.25 and earlier allows remote attackers to have unspecified impact via a colormap with a large number of entries...
SUSE CVE-2017-14341
ImageMagick 7.0.6-6 has a large loop vulnerability in ReadWPGImage in coders/wpg.c, causing CPU exhaustion via a crafted wpg image file...
SUSE CVE-2017-16545
The ReadWPGImage function in coders/wpg.c in GraphicsMagick 1.3.26 does not properly validate colormapped images, which allows remote attackers to cause a denial of service ImportIndexQuantumType invalid write and application crash or possibly have unspecified other impact via a malformed WPG ima...
SUSE CVE-2017-17682
In ImageMagick 7.0.7-12 Q16, a large loop vulnerability was found in the function ExtractPostscript in coders/wpg.c, which allows attackers to cause a denial of service CPU exhaustion via a crafted wpg image file that triggers a ReadWPGImage call...
Irfanview Buffer Overflow Vulnerability (CNVD-2021-76102)
IrfanView is an image viewer that supports image browsing, image editing, image format conversion, etc. A buffer overflow vulnerability exists in WPG 0x1dda in Irfanview version 4.57. An attacker can exploit this vulnerability to execute arbitrary code via specially crafted WPG files...
CVE-2021-29367
A buffer overflow vulnerability in WPG+0x1dda of Irfanview 4.57 allows attackers to execute arbitrary code via a crafted WPG file...
Buffer overflow
A buffer overflow vulnerability in WPG+0x1dda of Irfanview 4.57 allows attackers to execute arbitrary code via a crafted WPG file...
CVE-2021-29367
A buffer overflow vulnerability in WPG+0x1dda of Irfanview 4.57 allows attackers to execute arbitrary code via a crafted WPG file...
CVE-2021-29367
Vulnerability summary: CVE-2021-29367 affects IrfanView 4.57, with a buffer overflow in WPG+0x1dda that can be triggered by a specially crafted WPG file to execute arbitrary code. Root cause: Buffer overflow in the WPG handling path (WPG+0x1dda). Impact (as stated): Arbitrary code execution. CVSS...
IrfanView WPG plugin out-of-bounds read vulnerability
IrfanView is an image viewer that supports image browsing, image editing, image format conversion, etc. An out-of-bounds read vulnerability exists in IrfanView WPG plugin, which can be exploited by remote attackers to execute arbitrary code...
IrfanView WPG plugin out-of-bounds writing vulnerability
IrfanView is an image viewer that supports image browsing, image editing, image format conversion, etc. An out-of-bounds write vulnerability in IrfanView WPG plugin allows remote attackers to submit special requests that could crash the application or execute arbitrary code in the application...
CVE-2021-27362
The WPG plugin before 3.1.0.0 for IrfanView 4.57 has a Read Access Violation on Control Flow starting at WPG!ReadWPGW+0x0000000000000133, which might allow remote attackers to execute arbitrary code...
CVE-2021-27362
The WPG plugin before 3.1.0.0 for IrfanView 4.57 has a Read Access Violation on Control Flow starting at WPG!ReadWPGW+0x0000000000000133, which might allow remote attackers to execute arbitrary code...
CVE-2021-27224
The WPG plugin before 3.1.0.0 for IrfanView 4.57 has a user-mode write access violation starting at WPG+0x0000000000012ec6, which might allow remote attackers to execute arbitrary code...
CVE-2021-27224
The WPG plugin before 3.1.0.0 for IrfanView 4.57 has a user-mode write access violation starting at WPG+0x0000000000012ec6, which might allow remote attackers to execute arbitrary code...
Code injection
The WPG plugin before 3.1.0.0 for IrfanView 4.57 has a Read Access Violation on Control Flow starting at WPG!ReadWPGW+0x0000000000000133, which might allow remote attackers to execute arbitrary code...
Code injection
The WPG plugin before 3.1.0.0 for IrfanView 4.57 has a user-mode write access violation starting at WPG+0x0000000000012ec6, which might allow remote attackers to execute arbitrary code...
CVE-2021-27224
The CVE-2021-27224 entry concerns IrfanView 4.57 with the WPG plugin (WPG.dll) prior to version 3.1.0.0. A user-mode write access violation in WPG (starting at WPG+0x...12ec6) could allow remote attackers to execute arbitrary code. Public sources consistently describe an out-of-bounds/write condi...
CVE-2021-27224
The WPG plugin before 3.1.0.0 for IrfanView 4.57 has a user-mode write access violation starting at WPG+0x0000000000012ec6, which might allow remote attackers to execute arbitrary code...