6 results (0.003 seconds)

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 2

05 Jul 2007 — The _LoadBMP function in imlib 1.9.15 and earlier allows context-dependent attackers to cause a denial of service (infinite loop) via a BMP image with a Bits Per Page (BPP) value of 0. La función _LoadBMP en imlib 1.9.15 y anteriores permite a atacantes dependientes de contexto provocar una denegación de servicio (bucle infinito) mediante una imagen BMP con un valor BPP (Bits Por Página) de 0. • http://osvdb.org/39016 •

CVSS: 8.8EPSS: 6%CPEs: 73EXPL: 0

24 Sep 2004 — Buffer overflow in the BMP loader in imlib2 before 1.1.2 allows remote attackers to execute arbitrary code via a specially-crafted BMP image, a different vulnerability than CVE-2004-0817. A heap overflow in imlib2 can be utilized by an attacker to execute arbitrary code on the victims machine. • http://cvs.sourceforge.net/viewcvs.py/enlightenment/e17/libs/imlib2/ChangeLog?rev=1.20&view=markup •

CVSS: 9.1EPSS: 3%CPEs: 73EXPL: 0

17 Sep 2004 — Multiple heap-based buffer overflows in the imlib BMP image handler allow remote attackers to execute arbitrary code via a crafted BMP file. A heap overflow error in imlib could be abused by an attacker to execute arbitrary code on the vicim's machine. • http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000870 •

CVSS: 8.8EPSS: 3%CPEs: 73EXPL: 0

16 Sep 2004 — Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, and 6.x before 6.0.6.2, allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via malformed (1) AVI, (2) BMP, or (3) DIB files. SUSE has discovered several buffer overflows in the ImageMagick graphics library. An attacker could create a malicious image or video file in AVI, BMP, or DIB format that could crash the reading process. It might be possible that carefully crafted im... • http://secunia.com/advisories/28800 •

CVSS: 9.8EPSS: 0%CPEs: 13EXPL: 0

22 Apr 2002 — Imlib before 1.9.13 sometimes uses the NetPBM package to load trusted images, which could allow attackers to cause a denial of service (crash) and possibly execute arbitrary code via certain weaknesses of NetPBM. Imlib anteriores a 1.9.13 a veces usa el paquete NetPBM para cargar imágenes de confianza, lo que podría permitir a atacantes causar una denegación de servicio (caída) y posiblemente ejecutar código arbitrario mediante ciertas debilidades de NetPBM. • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-019.0.txt •

CVSS: 9.8EPSS: 0%CPEs: 13EXPL: 0

22 Apr 2002 — Vulnerability in Imlib before 1.9.13 allows attackers to cause a denial of service (crash) and possibly execute arbitrary code by manipulating arguments that are passed to malloc, which results in a heap corruption. Vulnerabilidad en Imlib antes de 1.9.13 permiten a atacantes causar una denegación de servicio (caída) y posiblemente ejecutar código arbitrario manipulando argumentos que se pasan a malloc(), lo que produce corrupción el el montón (heap). • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2002-019.0.txt •