Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jpeg vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-0053
Imager (libimager-perl) prior to 0.50 allows user-assisted malicious users to cause a denial of service (segmentation fault) by writing a 2- or 4-channel JPEG image (or a 2-channel TGA image) to a scalar, which triggers a NULL pointer dereference.
Tony Cook Imager 0.47
Tony Cook Imager 0.48
Tony Cook Imager 0.49
Tony Cook Imager 0.45
Tony Cook Imager 0.45 2
Tony Cook Imager 0.41
Tony Cook Imager 0.42
Tony Cook Imager 0.43
Tony Cook Imager 0.44 1
1 EDB exploit
NA
CVE-2008-5050
Off-by-one error in the get_unicode_name function (libclamav/vba_extract.c) in Clam Anti-Virus (ClamAV) prior to 0.94.1 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted VBA project file, which triggers a heap-base...
Clam Anti-virus Clamav 0.85.1
Clam Anti-virus Clamav 0.85
Clam Anti-virus Clamav 0.81
Clam Anti-virus Clamav 0.80 Rc4
Clam Anti-virus Clamav 0.73
Clam Anti-virus Clamav 0.74
Clam Anti-virus Clamav 0.65
Clam Anti-virus Clamav 0.54
Clam Anti-virus Clamav 0.90
Clam Anti-virus Clamav 0.90 Rc1.1
Clam Anti-virus Clamav 0.88
Clam Anti-virus Clamav 0.88.1
Clam Anti-virus Clamav 0.88.3
Clam Anti-virus Clamav 0.90rc1
Clam Anti-virus Clamav 0.91rc1
Clam Anti-virus Clamav 0.90.3
Clam Anti-virus Clamav 0.03
Clam Anti-virus Clamav 0.04
Clam Anti-virus Clamav 0.05
Clam Anti-virus Clamav 0.91.1
Clam Anti-virus Clamav 0.06
Clam Anti-virus Clamav 0.92.1
NA
CVE-2011-0061
Buffer overflow in Mozilla Firefox 3.6.x prior to 3.6.14, Thunderbird prior to 3.1.8, and SeaMonkey prior to 2.0.12 might allow remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a crafted JPEG image.
Mozilla Firefox 3.6.8
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.4
Mozilla Firefox 3.6.6
Mozilla Firefox 3.6.12
Mozilla Firefox 3.6.13
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.7
Mozilla Firefox 3.6
Mozilla Seamonkey 1.0.2
Mozilla Seamonkey 1.0.3
Mozilla Seamonkey 1.1
Mozilla Seamonkey 1.1.1
Mozilla Seamonkey 1.1.14
Mozilla Seamonkey 1.0.6
Mozilla Seamonkey 1.0.7
Mozilla Seamonkey 1.0
Mozilla Seamonkey 1.1.11
Mozilla Seamonkey 1.1.18
7.8
CVSSv3
CVE-2017-2862
An exploitable heap overflow vulnerability exists in the gdk_pixbuf__jpeg_image_load_increment functionality of Gdk-Pixbuf 2.36.6. A specially crafted jpeg file can cause a heap overflow resulting in remote code execution. An attacker can send a file or url to trigger this vulner...
Gnome Gdk-pixbuf 2.36.6
Debian Debian Linux 8.0
NA
CVE-2005-2340
Heap-based buffer overflow in Apple Quicktime prior to 7.0.4 allows remote malicious users to execute arbitrary code via a crafted (1) QuickTime Image File (QTIF), (2) PICT, or (3) JPEG format image with a long data field.
Apple Quicktime 7.0
Apple Quicktime 7.0.1
Apple Quicktime 7.0.2
Apple Quicktime
1 EDB exploit
7.8
CVSSv3
CVE-2021-45056
Adobe InCopy version 16.4 (and previous versions) is affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
Adobe Incopy
1 Github repository
1 Article
NA
CVE-2013-6630
The get_dht function in jdmarker.c in libjpeg-turbo up to and including 1.3.0, as used in Google Chrome prior to 31.0.1650.48 and other products, does not set all elements of a certain Huffman value array during the reading of segments that follow Define Huffman Table (DHT) JPEG ...
Google Chrome 31.0.1650.22
Google Chrome 31.0.1650.45
Google Chrome 31.0.1650.11
Google Chrome 31.0.1650.33
Google Chrome 31.0.1650.32
Google Chrome 31.0.1650.31
Google Chrome 31.0.1650.28
Google Chrome 31.0.1650.26
Google Chrome 31.0.1650.4
Google Chrome 31.0.1650.2
Google Chrome 31.0.1650.16
Google Chrome 31.0.1650.39
Google Chrome 31.0.1650.41
Google Chrome 31.0.1650.38
Google Chrome 31.0.1650.5
Google Chrome
Google Chrome 31.0.1650.36
Google Chrome 31.0.1650.43
Google Chrome 31.0.1650.34
Google Chrome 31.0.1650.13
Google Chrome 31.0.1650.44
Google Chrome 31.0.1650.23
NA
CVE-2013-6629
The get_sos function in jdmarker.c in (1) libjpeg 6b and (2) libjpeg-turbo up to and including 1.3.0, as used in Google Chrome prior to 31.0.1650.48, Ghostscript, and other products, does not check for certain duplications of component data during the reading of segments that fol...
Google Chrome
Oracle Solaris 11.3
Artifex Gpl Ghostscript
Libjpeg-turbo Libjpeg-turbo
Fedoraproject Fedora 18
Fedoraproject Fedora 20
Fedoraproject Fedora 19
Opensuse Opensuse 12.3
Opensuse Opensuse 12.2
Opensuse Opensuse 13.1
Canonical Ubuntu Linux 13.04
Canonical Ubuntu Linux 13.10
Canonical Ubuntu Linux 12.10
Canonical Ubuntu Linux 10.04
Canonical Ubuntu Linux 12.04
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Mozilla Firefox
Mozilla Seamonkey
Mozilla Thunderbird
Mozilla Firefox Esr
NA
CVE-2009-2626
The zend_restore_ini_entry_cb function in zend_ini.c in PHP 5.3.0, 5.2.10, and previous versions versions allows context-specific malicious users to obtain sensitive information (memory contents) and cause a PHP crash by using the ini_set function to declare a variable, then usin...
Php Php 4.3.6
Php Php 4.3.5
Php Php 4.3.0
Php Php 5.0.0
Php Php 4.3.7
Php Php 4.4.4
Php Php 5.1.0
Php Php 5.0.2
Php Php 4.2
Php Php 4.4.9
Php Php 3.0.12
Php Php 3.0.1
Php Php 3.0.14
Php Php 3.0.17
Php Php 3.0.5
Php Php 3.0.6
Php Php 4.0
Php Php 4.0.2
Php Php 4.0.1
Php Php 4.1.2
Php Php 4.0.7
Php Php 5.2.8
3 EDB exploits
NA
CVE-2015-4491
Integer overflow in the make_filter_table function in pixops/pixops.c in gdk-pixbuf prior to 2.31.5, as used in Mozilla Firefox prior to 40.0 and Firefox ESR 38.x prior to 38.2 on Linux, Google Chrome on Linux, and other products, allows remote malicious users to execute arbitrar...
Gnome Gdk-pixbuf
Oracle Solaris 10
Oracle Solaris 11.3
Opensuse Opensuse 13.1
Opensuse Opensuse 13.2
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.04
Fedoraproject Fedora 21
Fedoraproject Fedora 22
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »