EUVD-2018-18219

Malware in sbrugna...

ebiz.ycc.ac.kr Cross Site Scripting vulnerability OBB-1372691

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Code injection

Tracker PDF-XChange Viewer and Viewer AX SDK before 2.5.322.8 mishandle conversion from YCC to RGB colour spaces by calculating on the basis of 1 bpc instead of 8 bpc, which might allow remote attackers to execute arbitrary code via a crafted PDF document...

CVE-2018-6462

Tracker PDF-XChange Viewer and Viewer AX SDK prior to 2.5.322.8 are affected by a vulnerability in YCC to RGB color-space conversion that uses 1 bpc instead of 8 bpc, allowing remote code execution via a crafted PDF document. Affected products: Tracker PDF-XChange Viewer and Viewer AX SDK. Root c...

CVE-2018-6462

Tracker PDF-XChange Viewer and Viewer AX SDK before 2.5.322.8 mishandle conversion from YCC to RGB colour spaces by calculating on the basis of 1 bpc instead of 8 bpc, which might allow remote attackers to execute arbitrary code via a crafted PDF document...