Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libwmf vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2016-9011
The wmf_malloc function in api.c in libwmf 0.2.8.4 allows remote malicious users to cause a denial of service (application crash) via a crafted wmf file, which triggers a memory allocation failure.
Wvware Libwmf 0.2.8.4
7.5
CVSSv2
CVE-2009-1364
Use-after-free vulnerability in the embedded GD library in libwmf 0.2.8.4 allows context-dependent malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted WMF file.
Francis James Franklin Libwmf 0.2.8.4
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
1 Github repository
6.8
CVSSv2
CVE-2015-0848
Heap-based buffer overflow in libwmf 0.2.8.4 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image.
Wvware Libwmf 0.2.8.4
Fedoraproject Fedora 21
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
6.8
CVSSv2
CVE-2015-4588
Heap-based buffer overflow in the DecodeImage function in libwmf 0.2.8.4 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted "run-length count" in an image in a WMF file.
Opensuse Opensuse 13.2
Opensuse Opensuse 13.1
Wvware Libwmf 0.2.8.4
Fedoraproject Fedora 21
7.5
CVSSv2
CVE-2006-3376
Integer overflow in player.c in libwmf 0.2.8.4, as used in multiple products including (1) wv, (2) abiword, (3) freetype, (4) gimp, (5) libgsf, and (6) imagemagick allows remote malicious users to execute arbitrary code via the MaxRecordSize header field in a WMF file.
Wvware Wv2 0.2.2
Wvware Wv2 0.2.3
Wvware Libwmf 0.2.8 .4
Wvware Wv2 0.2.1
7.5
CVSSv2
CVE-2019-6978
The GD Graphics Library (aka LibGD) 2.2.5 has a double free in the gdImage*Ptr() functions in gd_gif_out.c, gd_jpeg.c, and gd_wbmp.c. NOTE: PHP is unaffected.
Libgd Libgd 2.2.5
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
4.3
CVSSv2
CVE-2007-3472
Integer overflow in gdImageCreateTrueColor function in the GD Graphics Library (libgd) prior to 2.0.35 allows user-assisted remote malicious users to have unspecified attack vectors and impact.
Libgd Gd Graphics Library 2.0.33
Libgd Gd Graphics Library 2.0.34
Libgd Gd Graphics Library 2.0.35
Libgd Gd Graphics Library
4.3
CVSSv2
CVE-2007-3473
The gdImageCreateXbm function in the GD Graphics Library (libgd) prior to 2.0.35 allows user-assisted remote malicious users to cause a denial of service (crash) via unspecified vectors involving a gdImageCreate failure.
Libgd Gd Graphics Library
1 EDB exploit
4.3
CVSSv2
CVE-2007-2756
The gdPngReadData function in libgd 2.0.34 allows user-assisted malicious users to cause a denial of service (CPU consumption) via a crafted PNG image with truncated data, which causes an infinite loop in the png_read_info function in libpng.
Libgd Libgd 2.0.34
7.5
CVSSv2
CVE-2007-0455
Buffer overflow in the gdImageStringFTEx function in gdft.c in GD Graphics Library 2.0.33 and previous versions allows remote malicious users to cause a denial of service (application crash) and possibly execute arbitrary code via a crafted string with a JIS encoded font.
Gd Graphics Library Project Gd Graphics Library
Php Php
Canonical Ubuntu Linux 7.04
Canonical Ubuntu Linux 6.10
Canonical Ubuntu Linux 6.06
Fedoraproject Fedora 13
Fedoraproject Fedora 14
Redhat Enterprise Linux Desktop 3.0
Redhat Enterprise Linux Desktop 4.0
Redhat Enterprise Linux Server 4.0
Redhat Enterprise Linux Workstation 4.0
Redhat Enterprise Linux Workstation 3.0
Redhat Enterprise Linux Server 3.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »