images software vulnerabilities
vulnerabilities.aspcode.net
Searching images software vulnerabilities
Microsoft Internet Explorer 6 allows remote att
attackers
|
Microsoft
|
Explorer
|
Internet
|
service
|
denial
|
allows
|
remote
|
cause
|
Microsoft Internet Explorer 6 allows remote attackers to cause a denial of service (CPU consumption and memory leak) via a web page with a large number of images.
Mozilla 0.9.6 allows remote attackers to cause
Mozilla
|
Mozilla 0.9.6 allows remote attackers to cause a denial of service (CPU consumption and memory leak) via a web page with a large number of images.
Opera 5.11 allows remote attackers to cause a d
Opera
|
Opera 5.11 allows remote attackers to cause a denial of service (CPU consumption and memory leak) via a web page with a large number of images.
Directory traversal vulnerabilities in ezConten
vulnerabilities
|
ezContents
|
Directory
|
traversal
|
Directory traversal vulnerabilities in ezContents 1.41 and earlier allow remote attackers to cause ezContents to (1) create directories using the Maintain Images:Add New:Create Subdirectory item, or (2) list directories using the Maintain Images file listing, via .. (dot dot) sequences.
Buffer overflow in Links 2.0 pre4 allows remote
attackers
|
arbitrary
|
browsers
|
possibly
|
overflow
|
execute
|
Buffer
|
images
|
16-bit
|
tables
|
remote
|
client
|
allows
|
gamma
|
large
|
crash
|
Links
|
code
|
pre4
|
via
|
PNG
|
Buffer overflow in Links 2.0 pre4 allows remote attackers to crash client browsers and possibly execute arbitrary code via gamma tables in large 16-bit PNG images.
Multiple integer overflows in libtiff 3.6.1 and
overflows
|
Multiple
|
libtiff
|
integer
|
Multiple integer overflows in libtiff 3.6.1 and earlier allow remote attackers to cause a denial of service (crash or memory corruption) via TIFF images that lead to incorrect malloc calls.
zgv 5.5.3 allows remote attackers to cause a de
zgv
|
zgv 5.5.3 allows remote attackers to cause a denial of service (application crash via segmentation fault) via crafted multiple-image (animated) GIF images.
Stack-based buffer overflow in the code that se
Stack-based
|
attackers
|
Gadu-Gadu
|
arbitrary
|
filename
|
overflow
|
execute
|
remote
|
buffer
|
images
|
allows
|
large
|
image
|
sends
|
code
|
via
|
Stack-based buffer overflow in the code that sends images in Gadu-Gadu allows remote attackers to execute arbitrary code via a large image filename.
TikiWiki before 1.8.4.1 does not properly verif
TikiWiki
|
before
|
TikiWiki before 1.8.4.1 does not properly verify uploaded images, which could allow remote attackers to upload and execute arbitrary PHP scripts, a different vulnerability than CVE-2005-0200.
Jetbox One 2.0.8 and possibly other versions al
Jetbox
|
One
|
Jetbox One 2.0.8 and possibly other versions allow remote attackers with Author privileges in the IMAGES module to upload PHP files and execute arbitrary code.
phpMyFAQ 1.4.0 allows remote attackers to acces
phpMyFAQ
|
phpMyFAQ 1.4.0 allows remote attackers to access the Image Manager to upload or delete images without authorization via a direct request.
deleteicon.aspx in AspDotNetStorefront 3.3 allo
AspDotNetStorefront
|
deleteiconaspx
|
arbitrary
|
ProductID
|
parameter
|
attackers
|
modified
|
product
|
allows
|
remote
|
delete
|
images
|
via
|
deleteicon.aspx in AspDotNetStorefront 3.3 allows remote attackers to delete arbitrary product images via a modified ProductID parameter.
Directory traversal vulnerability in thumb.php
vulnerability
|
Directory
|
traversal
|
FlatNuke
|
thumbphp
|
Directory traversal vulnerability in thumb.php in FlatNuke 2.5.3 allows remote attackers to read arbitrary images or obtain the installation path via the image parameter.
The passthrough functionality in phpThumb.php i
functionality
|
phpThumbphp
|
passthrough
|
The passthrough functionality in phpThumb.php in phpThumb() before 1.5.4 allows remote attackers to read files that are not images.
The "Upload new image" command in the "Manage I
uploading
|
extension
|
attackers
|
arbitrary
|
eFiction
|
validity
|
executes
|
filename
|
contains
|
execute
|
Images"
|
members
|
"Manage
|
"Upload
|
command
|
allowed
|
images
|
image"
|
passes
|
header
|
allows
|
within
|
upload
|
remote
|
image
|
check
|
which
|
code
|
file
|
any
|
PHP
|
new
|
but
|
GIF
|
The "Upload new image" command in the "Manage Images" eFiction 1.1, when members are allowed to upload images, allows remote attackers to execute arbitrary PHP code by uploading a filename with a .php extension that contains a GIF header, which passes the image validity check but executes any PHP code within the file.
Easy CMS stores the images directory under the
insufficient
|
directory
|
attackers
|
browsing
|
document
|
possibly
|
control
|
enabled
|
stored
|
remote
|
allows
|
images
|
stores
|
access
|
under
|
which
|
list
|
read
|
root
|
Easy
|
web
|
CMS
|
Easy CMS stores the images directory under the web document root with insufficient access control and browsing enabled, which allows remote attackers to list and possibly read images that are stored in that directory.
Unspecified "information leakage" vulnerabiliti
vulnerabilities
|
"information
|
Unspecified
|
aMuleWeb
|
leakage"
|
before
|
AMule
|
Unspecified "information leakage" vulnerabilities in aMuleWeb for AMule before 2.1.2 allow remote attackers to access arbitrary images, including dynamically generated images, via unknown vectors.
Multiple buffer overflows in ImageMagick before
ImageMagick
|
overflows
|
Multiple
|
before
|
buffer
|
Multiple buffer overflows in ImageMagick before 6.2.9 allow user-assisted attackers to execute arbitrary code via crafted XCF images.
The Admin Upload Image functionality in Joomla!
functionality
|
Joomla
|
before
|
Upload
|
Admin
|
Image
|
The Admin Upload Image functionality in Joomla! before 1.0.11 allows remote authenticated users to upload files outside of the /images/stories/ directory via unspecified vectors.
QuickTime for Java on Mac OS X 10.4 through 10.
QuickTime
|
Java
|
Mac
|
QuickTime for Java on Mac OS X 10.4 through 10.4.8, when used with Quartz Composer, allows remote attackers to obtain sensitive information (screen images) via a Java applet that accesses images that are being rendered by other embedded QuickTime objects.
Software vulnerabilities results 1 to 20 of 91
Page:
1
2
3
4
5
►