Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file file 3.36 vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2003-0102
Buffer overflow in tryelf() in readelf.c of the file command allows malicious users to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize).
File File 3.30
File File 3.32
File File 3.28
File File 3.37
File File 3.39
File File 3.40
File File 3.33
File File 3.34
File File 3.35
File File 3.36
Netbsd Netbsd 1.5
Netbsd Netbsd 1.5.1
Netbsd Netbsd 1.5.2
Netbsd Netbsd 1.5.3
Netbsd Netbsd 1.6
2 EDB exploits
7.5
CVSSv2
CVE-2003-1092
Unknown vulnerability in the "Automatic File Content Type Recognition (AFCTR) Tool version of the file package prior to 3.41, related to "a memory allocation problem," has unknown impact.
Christos Zoulas File 1 3.35
Christos Zoulas File 1 3.36
Christos Zoulas File 1 3.33
Christos Zoulas File 1 3.34
Christos Zoulas File 1 3.28
Christos Zoulas File 1 3.37
Christos Zoulas File 1 3.39
Christos Zoulas File 1 3.30
Christos Zoulas File 1 3.32
Christos Zoulas File 1 3.40
1 EDB exploit
9.3
CVSSv2
CVE-2009-3930
Multiple integer overflows in Christos Zoulas file prior to 5.02 allow user-assisted remote malicious users to have an unspecified impact via a malformed compound document (aka cdf) file that triggers a buffer overflow.
Christos Zoulas File 5.00
Christos Zoulas File 4.26
Christos Zoulas File 4.17
Christos Zoulas File 4.16
Christos Zoulas File 4.15
Christos Zoulas File 4.07
Christos Zoulas File 4.06
Christos Zoulas File 3.39
Christos Zoulas File 3.38
Christos Zoulas File
Christos Zoulas File 4.23
Christos Zoulas File 4.21
Christos Zoulas File 4.12
Christos Zoulas File 4.11
Christos Zoulas File 4.02
Christos Zoulas File 4.01
Christos Zoulas File 3.34
Christos Zoulas File 3.33
Christos Zoulas File 4.20
Christos Zoulas File 4.19
Christos Zoulas File 4.09
Christos Zoulas File 4.08
7.5
CVSSv2
CVE-2004-1403
PHP remote file inclusion vulnerability in index.php in GNUBoard 3.39 and previous versions allows remote malicious users to execute arbitrary PHP code by modifying the doc parameter to reference a URL on a remote web server that contains the code.
Sir Gnuboard 3.36
Sir Gnuboard 3.37
Sir Gnuboard 3.32
Sir Gnuboard 3.33
Sir Gnuboard 3.30
Sir Gnuboard 3.31
Sir Gnuboard 3.38
Sir Gnuboard 3.39
Sir Gnuboard 3.34
Sir Gnuboard 3.35
6.9
CVSSv2
CVE-2010-4345
Exim 4.72 and previous versions allows local users to gain privileges by leveraging the ability of the exim user account to specify an alternate configuration file with a directive that contains arbitrary commands, as demonstrated by the spool_directory directive.
Exim Exim 2.11
Exim Exim 4.70
Exim Exim 4.69
Exim Exim 4.66
Exim Exim 4.10
Exim Exim 3.16
Exim Exim 3.21
Exim Exim 3.01
Exim Exim 3.31
Exim Exim 4.24
Exim Exim 3.33
Exim Exim 3.30
Exim Exim
Exim Exim 4.30
Exim Exim 4.21
Exim Exim 4.03
Exim Exim 4.51
Exim Exim 4.71
Exim Exim 4.67
Exim Exim 4.63
Exim Exim 4.00
Exim Exim 4.43
1 EDB exploit
2 Metasploit modules
2 Nmap scripts
6.9
CVSSv2
CVE-2011-0017
The open_log function in log.c in Exim 4.72 and previous versions does not check the return value from (1) setuid or (2) setgid system calls, which allows local users to append log data to arbitrary files via a symlink attack.
Exim Exim 4.43
Exim Exim 4.34
Exim Exim 4.61
Exim Exim 4.60
Exim Exim 4.42
Exim Exim 4.65
Exim Exim 4.32
Exim Exim 4.20
Exim Exim 4.02
Exim Exim 4.01
Exim Exim 3.30
Exim Exim 3.22
Exim Exim 3.12
Exim Exim 3.11
Exim Exim 2.11
Exim Exim 2.10
Exim Exim 4.69
Exim Exim 4.50
Exim Exim 4.44
Exim Exim 4.63
Exim Exim 4.62
Exim Exim 4.21
6.8
CVSSv2
CVE-2012-5904
Heap-based buffer overflow in IrfanView prior to 4.33 allows remote malicious users to execute arbitrary code via a crafted RLE compressed bitmap file such as a DIB, RLE, or BMP image.
Irfanview Irfanview 4.28
Irfanview Irfanview 4.27
Irfanview Irfanview 3.98
Irfanview Irfanview 3.97
Irfanview Irfanview 3.75
Irfanview Irfanview 3.70
Irfanview Irfanview 3.30
Irfanview Irfanview 3.25
Irfanview Irfanview 3.07
Irfanview Irfanview 3.05
Irfanview Irfanview 2.90
Irfanview Irfanview 2.85
Irfanview Irfanview 2.60
Irfanview Irfanview 2.55
Irfanview Irfanview 2.30
Irfanview Irfanview 2.27
Irfanview Irfanview 2.12
Irfanview Irfanview 2.10
Irfanview Irfanview 2.07
Irfanview Irfanview 1.95
Irfanview Irfanview 1.90
Irfanview Irfanview
5
CVSSv2
CVE-2010-1509
IrfanView prior to 4.27 does not properly handle an unspecified integer variable during processing of PSD images, which allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted image file that triggers a heap-...
Irfanview Irfanview
Irfanview Irfanview 4.23
Irfanview Irfanview 3.97
Irfanview Irfanview 3.95
Irfanview Irfanview 3.61
Irfanview Irfanview 3.60
Irfanview Irfanview 3.25
Irfanview Irfanview 3.21
Irfanview Irfanview 3.05
Irfanview Irfanview 3.02
Irfanview Irfanview 2.83
Irfanview Irfanview 2.82
Irfanview Irfanview 2.60
Irfanview Irfanview 2.55
Irfanview Irfanview 2.30
Irfanview Irfanview 2.27
Irfanview Irfanview 2.10
Irfanview Irfanview 2.07
Irfanview Irfanview 1.95
Irfanview Irfanview 1.90
Irfanview Irfanview 4.22
Irfanview Irfanview 4.20
6.8
CVSSv2
CVE-2012-0897
Stack-based buffer overflow in the JPEG2000 plugin in IrfanView PlugIns prior to 4.33 allows remote malicious users to execute arbitrary code via a JPEG2000 (JP2) file with a crafted Quantization Default (QCD) marker segment.
Irfanview Irfanview 2.32
Irfanview Irfanview 2.30
Irfanview Irfanview 2.62
Irfanview Irfanview 2.60
Irfanview Irfanview 2.35
Irfanview Irfanview 2.83
Irfanview Irfanview 2.66
Irfanview Irfanview 2.68
Irfanview Irfanview 2.95
Irfanview Irfanview
Irfanview Irfanview 2.22
Irfanview Irfanview 2.20
Irfanview Irfanview 2.50
Irfanview Irfanview 2.40
Irfanview Irfanview 2.80
Irfanview Irfanview 3.99
Irfanview Irfanview 3.02
Irfanview Irfanview 3.05
Irfanview Irfanview 1.90
Irfanview Irfanview 1.95
Irfanview Irfanview 2.10
Irfanview Irfanview 2.12
1 EDB exploit
7.5
CVSSv2
CVE-2013-5351
Heap-based buffer overflow in IrfanView prior to 4.37 allows remote malicious users to execute arbitrary code via the LZW code stream in a GIF file.
Irfanview Irfanview
Irfanview Irfanview 4.25
Irfanview Irfanview 4.23
Irfanview Irfanview 3.97
Irfanview Irfanview 3.95
Irfanview Irfanview 3.61
Irfanview Irfanview 3.60
Irfanview Irfanview 3.25
Irfanview Irfanview 3.21
Irfanview Irfanview 3.05
Irfanview Irfanview 3.02
Irfanview Irfanview 2.85
Irfanview Irfanview 2.83
Irfanview Irfanview 2.62
Irfanview Irfanview 2.60
Irfanview Irfanview 2.32
Irfanview Irfanview 2.30
Irfanview Irfanview 2.27
Irfanview Irfanview 2.12
Irfanview Irfanview 2.10
Irfanview Irfanview 1.97
Irfanview Irfanview 1.95
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started