Vulnerability & Exploit Database

Displaying all 9 entries

Results for: CVE-2015-4696 Back to search

USN-2670-1: libwmf vulnerabilities Vulnerability

  • Severity: 7
  • Published: July 01, 2015

Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted "run-length count" in an image in a WMF file.

SUSE: CVE-2015-4696: SUSE Linux Security Advisory Vulnerability

  • Severity: 4
  • Published: July 01, 2015

Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) via a crafted WMF file to the (1) wmf2gd or (2) wmf2eps command.

RHSA-2015:1917: libwmf security update Vulnerability

  • Severity: 7
  • Published: July 01, 2015

libwmf is a library for reading and converting Windows Metafile Format(WMF) vector graphics. libwmf is used by applications such as GIMP andImageMagick.It was discovered that libwmf did not correctly process certain WMF(Windows Metafiles) with embedded BMP images. By tricking a victim intoopening a specially crafted WMF file in an applic...

ELSA-2015-1917 Important: Oracle Linux libwmf security update Vulnerability

  • Severity: 7
  • Published: July 01, 2015

Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted "run-length count" in an image in a WMF file.

DSA-3302-1 libwmf -- security update Vulnerability

  • Severity: 7
  • Published: July 01, 2015

Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted "run-length count" in an image in a WMF file.

Cent OS: CVE-2015-4696: CESA-2015:1917 (libwmf) Vulnerability

  • Severity: 4
  • Published: July 01, 2015

Use-after-free vulnerability in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (crash) via a crafted WMF file to the (1) wmf2gd or (2) wmf2eps command.

Amazon Linux AMI: Security patch for libwmf (ALAS-2015-604) (multiple CVEs) Vulnerability

  • Severity: 9
  • Published: October 19, 2009

The _gdGetColors function in gd_gd.c in PHP 5.2.11 and 5.3.x before 5.3.1, and the GD Graphics Library 2.x, does not properly verify a certain colorsTotal structure member, which might allow remote attackers to conduct buffer overflow or buffer over-read attacks via a crafted GD file, a different vulnerability than CVE-2009-3293. NOTE: s...

FreeBSD: libwmf -- multiple vulnerabilities (Multiple CVEs) Vulnerability

  • Severity: 10
  • Published: February 09, 2005

Multiple buffer overflows in the gd graphics library (libgd) 2.0.21 and earlier may allow remote attackers to execute arbitrary code via malformed image files that trigger the overflows due to improper calls to the gdMalloc function, a different set of vulnerabilities than CVE-2004-0990.