Searching io graphics software vulnerabilities

Format string vulnerability in the permitted fu

libgtop_daemon | vulnerability | permitted | function | libgtop | Format | string | GNOME |

Format string vulnerability in the permitted function of GNOME libgtop_daemon in libgtop 1.0.12 and earlier allows remote attackers to execute arbitrary code via an argument that contains format specifiers that are passed into the (1) syslog_message and (2) syslog_io_message functions.


Win32k.sys (aka Graphics Device Interface (GDI)

Win32ksys |

Win32k.sys (aka Graphics Device Interface (GDI)) in Windows 2000 and XP allows local users to cause a denial of service (system crash) by calling the ShowWindow function after receiving a WM_NCCREATE message.


The Portable Network Graphics library (libpng)

Graphics | Portable | library | Network |

The Portable Network Graphics library (libpng) 1.0.15 and earlier allows attackers to cause a denial of service (crash) via a malformed PNG image file that triggers an error that causes an out-of-bounds read when creating the error message.


Unknown vulnerability in the SG_IO functionalit

functionality | vulnerability | unauthorized | operations | read-only | Unknown | perform | access | bypass | ide-cd | allows | erase | write | SG_IO | local | users |

Unknown vulnerability in the SG_IO functionality in ide-cd allows local users to bypass read-only access and perform unauthorized write and erase operations.


Multiple "overflows" in the io_edgeport driver

io_edgeport | "overflows" | Multiple | unknown | vectors | impact | attack | kernel | driver | Linux | have | 24x |

Multiple "overflows" in the io_edgeport driver for Linux kernel 2.4.x have unknown impact and unknown attack vectors.


Multiple drivers in Linux kernel 2.4.19 and ear

Multiple | drivers | kernel | Linux |

Multiple drivers in Linux kernel 2.4.19 and earlier do not properly mark memory with the VM_IO flag, which causes incorrect reference counts and may lead to a denial of service (kernel panic) when accessing freed kernel pages.


The exit_thread function (process.c) in Linux k

exit_thread | function |

The exit_thread function (process.c) in Linux kernel 2.6 through 2.6.5 does not invalidate the per-TSS io_bitmap pointers if a process obtains IO access permissions from the ioperm function but does not drop those permissions when it exits, which allows other processes to access the per-TSS pointers, access restricted memory locations, and possibly gain privileges.


Memory leak in direct-io.c in Linux kernel 2.6.

direct-ioc | kernel | Memory | before | Linux | leak | 26x |

Memory leak in direct-io.c in Linux kernel 2.6.x before 2.6.10 allows local users to cause a denial of service (memory consumption) via certain O_DIRECT (direct IO) write requests.


Linux kernel before 2.6.9, when running on the

before | kernel | Linux |

Linux kernel before 2.6.9, when running on the AMD64 and Intel EM64T architectures, allows local users to write to privileged IO ports via the OUTS instruction.


AIO in the Linux kernel 2.6.11 on the PPC64 or

kernel | Linux | AIO |

AIO in the Linux kernel 2.6.11 on the PPC64 or IA64 architectures with CONFIG_HUGETLB_PAGE enabled allows local users to cause a denial of service (system panic) via a process that executes the io_queue_init function but exits without running io_queue_release, which causes exit_aio and is_hugepage_only_range to fail.


FreeBSD 5.x to 5.4 on AMD64 does not properly i

restrictions | information | initialize | permission | privileges | sensitive | hardware | intended | possibly | properly | certain | FreeBSD | service | allows | bypass | obtain | bitmap | access | denial | cause | allow | AMD64 | which | users | local | gain | does | user | used | not |

FreeBSD 5.x to 5.4 on AMD64 does not properly initialize the IO permission bitmap used to allow user access to certain hardware, which allows local users to bypass intended access restrictions to cause a denial of service, obtain sensitive information, and possibly gain privileges.


Integer overflow in the fetch_io function of th

Mailutils | function | versions | overflow | fetch_io | Integer | before | server | imap4d | other | GNU |

Integer overflow in the fetch_io function of the imap4d server in GNU Mailutils 0.5 and 0.6, and other versions before 0.6.90, allows remote attackers to execute arbitrary code via a partial message request with a large value in the END parameter, which leads to a heap-based buffer overflow.


Directory traversal vulnerability in Internet G

vulnerability | traversal | Directory | Graphics | Internet | before | Server | SAP |

Directory traversal vulnerability in Internet Graphics Server in SAP before 6.40 Patch 11 allows remote attackers to read arbitrary files via ".." sequences in an HTTP GET request.


io-xpm.c in the gdk-pixbuf XPM image rendering

gdk-pixbuf | rendering | library | io-xpmc | before | image | GTK+ | XPM |

io-xpm.c in the gdk-pixbuf XPM image rendering library in GTK+ before 2.8.7 allows attackers to cause a denial of service (infinite loop) via a crafted XPM image with a large number of colors.


Integer overflow in io-xpm.c in gdk-pixbuf 0.22

gdk-pixbuf | overflow | Integer | io-xpmc |

Integer overflow in io-xpm.c in gdk-pixbuf 0.22.0 in GTK+ before 2.8.7 allows attackers to cause a denial of service (crash) or execute arbitrary code via an XPM file with large height, width, and colour values, a different vulnerability than CVE-2005-3186.


Linux kernel before 2.6.13 allows local users t

before | kernel | Linux |

Linux kernel before 2.6.13 allows local users to cause a denial of service (crash) via a dio transfer from the sg driver to memory mapped (mmap) IO space.


Stack-based buffer overflow in the zzip_open_sh

zzip_open_shared_io | Stack-based | zzip/filec | function | overflow | Library | ZZIPlib | before | buffer |

Stack-based buffer overflow in the zzip_open_shared_io function in zzip/file.c in ZZIPlib Library before 0.13.49 allows user-assisted remote attackers to cause a denial of service (application crash) or execute arbitrary code via a long filename.


Multiple heap-based buffer overflows in the NDR

heap-based | overflows | Multiple | parsing | buffer | Samba | smbd | NDR |

Multiple heap-based buffer overflows in the NDR parsing in smbd in Samba 3.0.0 through 3.0.25rc3 allow remote attackers to execute arbitrary code via crafted MS-RPC requests involving (1) DFSEnum (netdfs_io_dfs_EnumInfo_d), (2) RFNPCNEX (smb_io_notify_option_type_data), (3) LsarAddPrivilegesToAccount (lsa_io_privilege_set), (4) NetSetFileSecurity (sec_io_acl), or (5) LsarLookupSids/LsarLookupSids2 (lsa_io_trans_names).


Integer overflow in gdImageCreateTrueColor func

gdImageCreateTrueColor | function | Graphics | overflow | Library | Integer |

Integer overflow in gdImageCreateTrueColor function in the GD Graphics Library (libgd) before 2.0.35 allows user-assisted remote attackers to have unspecified attack vectors and impact.


Multiple unspecified vulnerabilities in the GIF

vulnerabilities | unspecified | Graphics | Multiple | Library | reader | GIF |

Multiple unspecified vulnerabilities in the GIF reader in the GD Graphics Library (libgd) before 2.0.35 have unspecified impact and user-assisted remote attack vectors.


Software vulnerabilities results 1 to 20 of 58     
Page: 123