CVSS: 9.8EPSS: 3%CPEs: 39EXPL: 0CVE-2012-6089 – Gentoo Linux Security Advisory 201312-05
https://notcve.org/view.php?id=CVE-2012-6089
04 Jan 2013 — Multiple stack-based buffer overflows in the canoniseFileName function in os/pl-os.c in SWI-Prolog before 6.2.5 and 6.3.x before 6.3.7 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted filename. Múltiples vulnerabilidades de ejecución de secuencias de comandos en sitios cruzados (XSS) en la función canoniseFileName en os/pl-os.c en SWI-Prolog anteriores a v6.2.5 y v6.3.x anteriores a v6.3.7, permite a atacantes remotos provocar una deneg... • http://openwall.com/lists/oss-security/2013/01/03/7 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 3%CPEs: 39EXPL: 0CVE-2012-6090 – Gentoo Linux Security Advisory 201312-05
https://notcve.org/view.php?id=CVE-2012-6090
04 Jan 2013 — Multiple stack-based buffer overflows in the expand function in os/pl-glob.c in SWI-Prolog before 6.2.5 and 6.3.x before 6.3.7 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted filename. Múltiples vulnerabilidades de ejecución de secuencias de comandos en sitios cruzados (XSS) en la función expand en os/pl-glob.c en SWI-Prolog anteriores a v6.2.5 y v6.3.x anteriores a v6.3.7, permite a atacantes remotos provocar una denegación de servici... • http://openwall.com/lists/oss-security/2013/01/03/7 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 11%CPEs: 3EXPL: 0CVE-2011-2896 – David Koblas' GIF decoder LZW decoder buffer overflow
https://notcve.org/view.php?id=CVE-2011-2896
19 Aug 2011 — The LZW decompressor in the LWZReadByte function in giftoppm.c in the David Koblas GIF decoder in PBMPLUS, as used in the gif_read_lzw function in filter/image-gif.c in CUPS before 1.4.7, the LZWReadByte function in plug-ins/common/file-gif-load.c in GIMP 2.6.11 and earlier, the LZWReadByte function in img/gifread.c in XPCE in SWI-Prolog 5.10.4 and earlier, and other products, does not properly handle code words that are absent from the decompression table when encountered, which allows remote attackers to ... • http://cups.org/str.php?L3867 • CWE-787: Out-of-bounds Write •