2 results (0.004 seconds)

CVSS: 10.0EPSS: 8%CPEs: 1EXPL: 0

Multiple integer overflows in glyphs-eimage.c in XEmacs 21.4.22, when running on Windows, allow remote attackers to cause a denial of service (crash) or execute arbitrary code via (1) the tiff_instantiate function processing a crafted TIFF file, (2) the png_instantiate function processing a crafted PNG file, and (3) the jpeg_instantiate function processing a crafted JPEG file, all which trigger a heap-based buffer overflow. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information. Múltiples desbordamientos de enteros en glyphs-eimage.c en XEmacs v21.4.22, cuando corre en Windows, permite a atacantes remotos causar una denegación de servicio (caída) o ejecutar código a su elección a través (1) la función tiff_instantiate produciendo un fichero TIFF manipulado, (2) la función png_instantiate produciendo un fichero PNG manipulado, y (3) la función jpeg_instantiate produciendo un fichero JPEG manipulado, todas provocan un desbordamiento de búfer basado en memoria dinámica. NOTA: el origen de esta información es desconocido; Los detalles han sido obtenidos a partir de terceros. • http://osvdb.org/55298 http://secunia.com/advisories/35348 http://tracker.xemacs.org/XEmacs/its/issue534 http://www.securityfocus.com/bid/35473 http://www.vupen.com/english/advisories/2009/1666 https://bugs.gentoo.org/show_bug.cgi?id=275397 https://bugzilla.redhat.com/show_bug.cgi?id=511994 https://exchange.xforce.ibmcloud.com/vulnerabilities/51332 https://exchange.xforce.ibmcloud.com/vulnerabilities/51333 https://exchange.xforce.ibmcloud.com/vulnerabilities/51334 • CWE-189: Numeric Errors •

CVSS: 1.2EPSS: 0%CPEs: 2EXPL: 0

rcs2log, as used in Emacs 20.4, xemacs 21.1.10 and other versions before 21.4, and possibly other packages, allows local users to modify files of other users via a symlink attack on a temporary file. • http://archives.neohapsis.com/archives/bugtraq/2001-08/0093.html http://savannah.gnu.org/cgi-bin/viewcvs/emacs/emacs/lib-src/rcs2log?only_with_tag=EMACS_PRETEST_21_0_95 http://www.iss.net/security_center/static/11210.php •