Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Entropymine Subscribe
Filtered by product Imageworsener
Total 23 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2018-5252 1 Entropymine 1 Imageworsener 2019-10-02 2.6 LOW 5.3 MEDIUM
libimageworsener.a in ImageWorsener 1.3.2, when libjpeg 8d is used, has a large loop in the get_raw_sample_int function in imagew-main.c.
CVE-2017-7454 1 Entropymine 1 Imageworsener 2019-10-02 4.3 MEDIUM 5.5 MEDIUM
The iwgif_record_pixel function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file.
CVE-2017-7623 1 Entropymine 1 Imageworsener 2019-10-02 4.3 MEDIUM 5.5 MEDIUM
The iwmiffr_convert_row32 function in imagew-miff.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file.
CVE-2017-7624 1 Entropymine 1 Imageworsener 2019-10-02 4.3 MEDIUM 5.5 MEDIUM
The iw_read_bmp_file function in imagew-bmp.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to consume an amount of available memory via a crafted file.
CVE-2017-7939 1 Entropymine 1 Imageworsener 2019-10-02 4.3 MEDIUM 5.5 MEDIUM
The read_next_pam_token function in imagew-pnm.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (stack-based buffer over-read) via a crafted file.
CVE-2017-8326 1 Entropymine 1 Imageworsener 2019-10-02 6.8 MEDIUM 8.8 HIGH
libimageworsener.a in ImageWorsener before 1.3.1 has "left shift cannot be represented in type int" undefined behavior issues, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image, related to imagew-bmp.c and imagew-util.c.
CVE-2017-8327 1 Entropymine 1 Imageworsener 2019-10-02 7.1 HIGH 6.5 MEDIUM
The bmpr_read_uncompressed function in imagew-bmp.c in libimageworsener.a in ImageWorsener before 1.3.1 allows remote attackers to cause a denial of service (memory consumption) via a crafted image.
CVE-2017-9093 1 Entropymine 1 Imageworsener 2019-10-02 4.3 MEDIUM 6.5 MEDIUM
The my_skip_input_data_fn function in imagew-jpeg.c in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted image.
CVE-2017-9094 1 Entropymine 1 Imageworsener 2019-10-02 4.3 MEDIUM 6.5 MEDIUM
The lzw_add_to_dict function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted image.
CVE-2017-9206 1 Entropymine 1 Imageworsener 2019-10-02 4.3 MEDIUM 6.5 MEDIUM
The iw_get_ui16le function in imagew-util.c:405:23 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted image, related to imagew-jpeg.c.
CVE-2017-9207 1 Entropymine 1 Imageworsener 2019-10-02 4.3 MEDIUM 6.5 MEDIUM
The iw_get_ui16be function in imagew-util.c:422:24 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted image, related to imagew-jpeg.c.
CVE-2017-9203 1 Entropymine 1 Imageworsener 2019-10-02 4.3 MEDIUM 6.5 MEDIUM
imagew-main.c:960:12 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (buffer underflow) via a crafted image, related to imagew-bmp.c.
CVE-2017-7452 1 Entropymine 1 Imageworsener 2019-09-16 4.3 MEDIUM 5.5 MEDIUM
The iwbmp_read_info_header function in imagew-bmp.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
CVE-2017-7453 1 Entropymine 1 Imageworsener 2019-09-16 4.3 MEDIUM 5.5 MEDIUM
The iwgif_record_pixel function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
CVE-2017-9201 1 Entropymine 1 Imageworsener 2019-09-16 4.3 MEDIUM 6.5 MEDIUM
imagew-cmd.c:850:46 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted image, related to imagew-api.c.
CVE-2017-9202 1 Entropymine 1 Imageworsener 2019-09-16 4.3 MEDIUM 6.5 MEDIUM
imagew-cmd.c:854:45 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted image, related to imagew-api.c.
CVE-2017-9204 1 Entropymine 1 Imageworsener 2019-09-16 4.3 MEDIUM 6.5 MEDIUM
The iw_get_ui16le function in imagew-util.c:405:23 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (invalid read and SEGV) via a crafted image, related to imagew-jpeg.c.
CVE-2017-9205 1 Entropymine 1 Imageworsener 2019-09-16 4.3 MEDIUM 6.5 MEDIUM
The iw_get_ui16be function in imagew-util.c:422:24 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (invalid read and SEGV) via a crafted image, related to imagew-jpeg.c.
CVE-2017-7940 1 Entropymine 1 Imageworsener 2019-09-16 4.3 MEDIUM 5.5 MEDIUM
The iw_read_gif_file function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to consume an amount of available memory via a crafted file.
CVE-2017-7962 1 Entropymine 1 Imageworsener 2019-09-16 4.3 MEDIUM 5.5 MEDIUM
The iwgif_read_image function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file.