Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

file file 3.36 vulnerabilities and exploits

(subscribe to this query)
4.6
CVSSv2
CVE-2003-0102
Buffer overflow in tryelf() in readelf.c of the file command allows malicious users to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize).
File File 3.30File File 3.32File File 3.28File File 3.37File File 3.39File File 3.40File File 3.33File File 3.34File File 3.35File File 3.36Netbsd Netbsd 1.5Netbsd Netbsd 1.5.1Netbsd Netbsd 1.5.2Netbsd Netbsd 1.5.3Netbsd Netbsd 1.6
7.5
CVSSv2
CVE-2003-1092
Unknown vulnerability in the "Automatic File Content Type Recognition (AFCTR) Tool version of the file package prior to 3.41, related to "a memory allocation problem," has unknown impact.
Christos Zoulas File 1 3.35Christos Zoulas File 1 3.36Christos Zoulas File 1 3.33Christos Zoulas File 1 3.34Christos Zoulas File 1 3.28Christos Zoulas File 1 3.37Christos Zoulas File 1 3.39Christos Zoulas File 1 3.30Christos Zoulas File 1 3.32Christos Zoulas File 1 3.40
9.3
CVSSv2
CVE-2009-3930
Multiple integer overflows in Christos Zoulas file prior to 5.02 allow user-assisted remote malicious users to have an unspecified impact via a malformed compound document (aka cdf) file that triggers a buffer overflow.
Christos Zoulas File 5.00Christos Zoulas File 4.26Christos Zoulas File 4.17Christos Zoulas File 4.16Christos Zoulas File 4.15Christos Zoulas File 4.07Christos Zoulas File 4.06Christos Zoulas File 3.39Christos Zoulas File 3.38Christos Zoulas FileChristos Zoulas File 4.23Christos Zoulas File 4.21Christos Zoulas File 4.12Christos Zoulas File 4.11Christos Zoulas File 4.02Christos Zoulas File 4.01Christos Zoulas File 3.34Christos Zoulas File 3.33Christos Zoulas File 4.20Christos Zoulas File 4.19Christos Zoulas File 4.09Christos Zoulas File 4.08
7.5
CVSSv2
CVE-2004-1403
PHP remote file inclusion vulnerability in index.php in GNUBoard 3.39 and previous versions allows remote malicious users to execute arbitrary PHP code by modifying the doc parameter to reference a URL on a remote web server that contains the code.
Sir Gnuboard 3.36Sir Gnuboard 3.37Sir Gnuboard 3.32Sir Gnuboard 3.33Sir Gnuboard 3.30Sir Gnuboard 3.31Sir Gnuboard 3.38Sir Gnuboard 3.39Sir Gnuboard 3.34Sir Gnuboard 3.35
6.9
CVSSv2
CVE-2010-4345
Exim 4.72 and previous versions allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands, as demonstrated by the spool_directory directive.
Exim Exim 2.11Exim Exim 4.70Exim Exim 4.69Exim Exim 4.66Exim Exim 4.10Exim Exim 3.16Exim Exim 3.21Exim Exim 3.01Exim Exim 3.31Exim Exim 4.24Exim Exim 3.33Exim Exim 3.30Exim EximExim Exim 4.30Exim Exim 4.21Exim Exim 4.03Exim Exim 4.51Exim Exim 4.71Exim Exim 4.67Exim Exim 4.63Exim Exim 4.00Exim Exim 4.43
6.9
CVSSv2
CVE-2011-0017
The open_log function in log.c in Exim 4.72 and previous versions does not check the return value from (1) setuid or (2) setgid system calls, which allows local users to append log data to arbitrary files via a symlink attack.
Exim Exim 4.43Exim Exim 4.34Exim Exim 4.61Exim Exim 4.60Exim Exim 4.42Exim Exim 4.65Exim Exim 4.32Exim Exim 4.20Exim Exim 4.02Exim Exim 4.01Exim Exim 3.30Exim Exim 3.22Exim Exim 3.12Exim Exim 3.11Exim Exim 2.11Exim Exim 2.10Exim Exim 4.69Exim Exim 4.50Exim Exim 4.44Exim Exim 4.63Exim Exim 4.62Exim Exim 4.21
6.8
CVSSv2
CVE-2012-5904
Heap-based buffer overflow in IrfanView prior to 4.33 allows remote malicious users to execute arbitrary code via a crafted RLE compressed bitmap file such as a DIB, RLE, or BMP image.
Irfanview Irfanview 4.28Irfanview Irfanview 4.27Irfanview Irfanview 3.98Irfanview Irfanview 3.97Irfanview Irfanview 3.75Irfanview Irfanview 3.70Irfanview Irfanview 3.30Irfanview Irfanview 3.25Irfanview Irfanview 3.07Irfanview Irfanview 3.05Irfanview Irfanview 2.90Irfanview Irfanview 2.85Irfanview Irfanview 2.60Irfanview Irfanview 2.55Irfanview Irfanview 2.30Irfanview Irfanview 2.27Irfanview Irfanview 2.12Irfanview Irfanview 2.10Irfanview Irfanview 2.07Irfanview Irfanview 1.95Irfanview Irfanview 1.90Irfanview Irfanview
5
CVSSv2
CVE-2010-1509
IrfanView prior to 4.27 does not properly handle an unspecified integer variable during processing of PSD images, which allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted image file that triggers a heap-...
Irfanview IrfanviewIrfanview Irfanview 4.23Irfanview Irfanview 3.97Irfanview Irfanview 3.95Irfanview Irfanview 3.61Irfanview Irfanview 3.60Irfanview Irfanview 3.25Irfanview Irfanview 3.21Irfanview Irfanview 3.05Irfanview Irfanview 3.02Irfanview Irfanview 2.83Irfanview Irfanview 2.82Irfanview Irfanview 2.60Irfanview Irfanview 2.55Irfanview Irfanview 2.30Irfanview Irfanview 2.27Irfanview Irfanview 2.10Irfanview Irfanview 2.07Irfanview Irfanview 1.95Irfanview Irfanview 1.90Irfanview Irfanview 4.22Irfanview Irfanview 4.20
6.8
CVSSv2
CVE-2012-0897
Stack-based buffer overflow in the JPEG2000 plugin in IrfanView PlugIns prior to 4.33 allows remote malicious users to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) marker segment.
Irfanview Irfanview 2.32Irfanview Irfanview 2.30Irfanview Irfanview 2.62Irfanview Irfanview 2.60Irfanview Irfanview 2.35Irfanview Irfanview 2.83Irfanview Irfanview 2.66Irfanview Irfanview 2.68Irfanview Irfanview 2.95Irfanview IrfanviewIrfanview Irfanview 2.22Irfanview Irfanview 2.20Irfanview Irfanview 2.50Irfanview Irfanview 2.40Irfanview Irfanview 2.80Irfanview Irfanview 3.99Irfanview Irfanview 3.02Irfanview Irfanview 3.05Irfanview Irfanview 1.90Irfanview Irfanview 1.95Irfanview Irfanview 2.10Irfanview Irfanview 2.12
7.5
CVSSv2
CVE-2013-5351
Heap-based buffer overflow in IrfanView prior to 4.37 allows remote malicious users to execute arbitrary code via the LZW code stream in a GIF file.
Irfanview IrfanviewIrfanview Irfanview 4.25Irfanview Irfanview 4.23Irfanview Irfanview 3.97Irfanview Irfanview 3.95Irfanview Irfanview 3.61Irfanview Irfanview 3.60Irfanview Irfanview 3.25Irfanview Irfanview 3.21Irfanview Irfanview 3.05Irfanview Irfanview 3.02Irfanview Irfanview 2.85Irfanview Irfanview 2.83Irfanview Irfanview 2.62Irfanview Irfanview 2.60Irfanview Irfanview 2.32Irfanview Irfanview 2.30Irfanview Irfanview 2.27Irfanview Irfanview 2.12Irfanview Irfanview 2.10Irfanview Irfanview 1.97Irfanview Irfanview 1.95
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322CVE-2006-4304wirelessCVE-2023-23022local file inclusionCVE-2024-27058CVE-2024-33820open redirectCVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook