Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jpeg vulnerabilities and exploits
(subscribe to this query)
2.6
CVSSv2
CVE-2006-0053
Imager (libimager-perl) prior to 0.50 allows user-assisted malicious users to cause a denial of service (segmentation fault) by writing a 2- or 4-channel JPEG image (or a 2-channel TGA image) to a scalar, which triggers a NULL pointer dereference.
Tony Cook Imager 0.47
Tony Cook Imager 0.48
Tony Cook Imager 0.49
Tony Cook Imager 0.45
Tony Cook Imager 0.45 2
Tony Cook Imager 0.41
Tony Cook Imager 0.42
Tony Cook Imager 0.43
Tony Cook Imager 0.44 1
1 EDB exploit
9.3
CVSSv2
CVE-2008-5050
Off-by-one error in the get_unicode_name function (libclamav/vba_extract.c) in Clam Anti-Virus (ClamAV) prior to 0.94.1 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted VBA project file, which triggers a heap-base...
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.85
Clam Anti-virus Clamav 0.81
Clam Anti-virus Clamav 0.80 Rc4
Clam Anti-virus Clamav 0.73
Clam Anti-virus Clamav 0.74
Clam Anti-virus Clamav 0.65
Clam Anti-virus Clamav 0.54
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.88
Clam Anti-virus Clamav 0.88.1
Clam Anti-virus Clamav 0.88.3
Clam Anti-virus Clamav 0.90rc1
Clam Anti-virus Clamav 0.91rc1
Clam Anti-virus Clamav 0.90.3
Clam Anti-virus Clamav 0.03
Clam Anti-virus Clamav 0.04
Clam Anti-virus Clamav 0.05
Clam Anti-virus Clamav 0.91.1
Clam Anti-virus Clamav 0.06
Clam Anti-virus Clamav 0.92.1
9.3
CVSSv2
CVE-2011-0061
Buffer overflow in Mozilla Firefox 3.6.x prior to 3.6.14, Thunderbird prior to 3.1.8, and SeaMonkey prior to 2.0.12 might allow remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted JPEG image.
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.12
Mozilla Firefox 3.6.13
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6
Mozilla Seamonkey 1.0.2
Mozilla Seamonkey 1.0.3
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.1
Mozilla Seamonkey 1.1.14
Mozilla Seamonkey 1.0.6
Mozilla Seamonkey 1.0.7
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.1.11
Mozilla Seamonkey 1.1.18
6.8
CVSSv2
CVE-2017-2862
An exploitable heap overflow vulnerability exists in the gdk_pixbuf__jpeg_image_load_increment functionality of Gdk-Pixbuf 2.36.6. A specially crafted jpeg file can cause a heap overflow resulting in remote code execution. An attacker can send a file or url to trigger this vulner...
Gnome Gdk-pixbuf 2.36.6
Debian Debian Linux 8.0
7.5
CVSSv2
CVE-2005-2340
Heap-based buffer overflow in Apple Quicktime prior to 7.0.4 allows remote malicious users to execute arbitrary code via a crafted (1) QuickTime Image File (QTIF), (2) PICT, or (3) JPEG format image with a long data field.
Apple Quicktime 7.0
Apple Quicktime 7.0.1
Apple Quicktime 7.0.2
Apple Quicktime
1 EDB exploit
6.8
CVSSv2
CVE-2021-45056
Adobe InCopy version 16.4 (and previous versions) is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
Adobe Incopy
1 Github repository
1 Article
5
CVSSv2
CVE-2013-6630
The get_dht function in jdmarker.c in libjpeg-turbo up to and including 1.3.0, as used in Google Chrome prior to 31.0.1650.48 and other products, does not set all elements of a certain Huffman value array during the reading of segments that follow Define Huffman Table (DHT) JPEG ...
Google Chrome 31.0.1650.22
Google Chrome 31.0.1650.45
Google Chrome 31.0.1650.11
Google Chrome 31.0.1650.33
Google Chrome 31.0.1650.32
Google Chrome 31.0.1650.31
Google Chrome 31.0.1650.28
Google Chrome 31.0.1650.26
Google Chrome 31.0.1650.4
Google Chrome 31.0.1650.2
Google Chrome 31.0.1650.16
Google Chrome 31.0.1650.39
Google Chrome 31.0.1650.41
Google Chrome 31.0.1650.38
Google Chrome 31.0.1650.5
Google Chrome
Google Chrome 31.0.1650.36
Google Chrome 31.0.1650.43
Google Chrome 31.0.1650.34
Google Chrome 31.0.1650.13
Google Chrome 31.0.1650.44
Google Chrome 31.0.1650.23
5
CVSSv2
CVE-2013-6629
The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-turbo up to and including 1.3.0, as used in Google Chrome prior to 31.0.1650.48, Ghostscript, and other products, does not check for certain duplications of component data during the reading of segments that fol...
Google Chrome
Oracle Solaris 11.3
Artifex Gpl Ghostscript
Libjpeg-turbo Libjpeg-turbo
Fedoraproject Fedora 18
Fedoraproject Fedora 20
Fedoraproject Fedora 19
Opensuse Opensuse 12.3
Opensuse Opensuse 12.2
Opensuse Opensuse 13.1
Canonical Ubuntu Linux 13.04
Canonical Ubuntu Linux 13.10
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 12.04
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Mozilla Firefox
Mozilla Seamonkey
Mozilla Thunderbird
Mozilla Firefox Esr
6.4
CVSSv2
CVE-2009-2626
The zend_restore_ini_entry_cb function in zend_ini.c in PHP 5.3.0, 5.2.10, and previous versions versions allows context-specific malicious users to obtain sensitive information (memory contents) and cause a PHP crash by using the ini_set function to declare a variable, then usin...
Php Php 4.3.6
Php Php 4.3.5
Php Php 4.3.0
Php Php 5.0.0
Php Php 4.3.7
Php Php 4.4.4
Php Php 5.1.0
Php Php 5.0.2
Php Php 4.2
Php Php 4.4.9
Php Php 3.0.12
Php Php 3.0.1
Php Php 3.0.14
Php Php 3.0.17
Php Php 3.0.5
Php Php 3.0.6
Php Php 4.0
Php Php 4.0.2
Php Php 4.0.1
Php Php 4.1.2
Php Php 4.0.7
Php Php 5.2.8
3 EDB exploits
6.8
CVSSv2
CVE-2017-15930
In ReadOneJNGImage in coders/png.c in GraphicsMagick 1.3.26, a Null Pointer Dereference occurs while transferring JPEG scanlines, related to a PixelPacket pointer.
Graphicsmagick Graphicsmagick 1.3.26
Debian Debian Linux 8.0
Debian Debian Linux 9.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »