Page 2 of 8 results (0.007 seconds)

CVSS: 6.8EPSS: 5%CPEs: 1EXPL: 0

Buffer overflow in the readImageData function in giftopnm.c in netpbm before 10.27 in netpbm before 10.27 allows remote user-assisted attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted GIF image, a similar issue to CVE-2006-4484. Desbordamiento de Buffer en la función readImageData en giftopnm.c de netpbm en versiones anteriores a 10.27 y de netpbm en versiones anteriores a 10.27 permite a atacantes remotos con la intervención del usuario provocar una denegación de servicio (caída) y posiblemente ejecutar código de su elección a través de imágenes GIF manipuladas, similar a CVE-2006-4484. • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=464056 http://secunia.com/advisories/29079 http://secunia.com/advisories/30280 http://secunia.com/advisories/32607 http://ubuntu.com/usn/usn-665-1 http://www.debian.org/security/2008/dsa-1579 http://www.mandriva.com/security/advisories?name=MDVSA-2008:039 http://www.redhat.com/support/errata/RHSA-2008-0131.html http://www.securityfocus.com/bid/27682 http://www.securitytracker.com/id?1019358 http://www.vupen.com/ • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 3.7EPSS: 0%CPEs: 1EXPL: 0

netpbm 9.25 and earlier does not properly create temporary files, which allows local users to overwrite arbitrary files. netpbm 2:9.25 y anteriores no crea adecuadamente ficheros temporales, lo que permite a usuarios locales sobreescribir ficheros arbitrarios. • ftp://patches.sgi.com/support/free/security/advisories/20040201-01-U.asc http://www.debian.org/security/2004/dsa-426 http://www.gentoo.org/security/en/glsa/glsa-200410-02.xml http://www.kb.cert.org/vuls/id/487102 http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:011 http://www.redhat.com/support/errata/RHSA-2004-030.html http://www.redhat.com/support/errata/RHSA-2004-031.html http://www.securityfocus.com/bid/9442 https://exchange.xforce.ibmcloud.com&# •

CVSS: 7.5EPSS: 9%CPEs: 1EXPL: 0

Multiple vulnerabilities in NetPBM 9.20 and earlier, and possibly other versions, may allow remote attackers to cause a denial of service or execute arbitrary code via "maths overflow errors" such as (1) integer signedness errors or (2) integer overflows, which lead to buffer overflows. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000656 http://marc.info/?l=bugtraq&m=104644687816522&w=2 http://www.debian.org/security/2003/dsa-263 http://www.kb.cert.org/vuls/id/630433 http://www.redhat.com/support/errata/RHSA-2003-060.html http://www.securityfocus.com/bid/6979 https://exchange.xforce.ibmcloud.com/vulnerabilities/11463 https://access.redhat.com/security/cve/CVE-2003-0146 https://bugzilla.redhat.com/show_bug.cgi?id=1616985 •