CVE-2012-0876
- EPSS 5.72%
- Veröffentlicht 03.07.2012 19:55:02
- Zuletzt bearbeitet 16.06.2026 23:38:26
The XML parser (xmlparse.c) in expat before 2.1.0 computes hash values without restricting the ability to trigger hash collisions predictably, which allows context-dependent attackers to cause a denial of service (CPU consumption) via an XML file wit...
CVE-2012-1149
- EPSS 13.73%
- Veröffentlicht 21.06.2012 15:55:11
- Zuletzt bearbeitet 16.06.2026 23:39:08
Integer overflow in the vclmi.dll module in OpenOffice.org (OOo) 3.3, 3.4 Beta, and possibly earlier, and LibreOffice before 3.5.3, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a cra...
CVE-2012-0037
- EPSS 13.68%
- Veröffentlicht 17.06.2012 03:41:40
- Zuletzt bearbeitet 16.06.2026 23:36:32
Redland Raptor (aka libraptor) before 2.0.7, as used by OpenOffice 3.3 and 3.4 Beta, LibreOffice before 3.4.6 and 3.5.x before 3.5.1, and other products, allows user-assisted remote attackers to read arbitrary files via a crafted XML external entity ...
- EPSS 98.11%
- Veröffentlicht 07.06.2012 22:55:17
- Zuletzt bearbeitet 16.06.2026 23:37:26
Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability ...
CVE-2012-1610
- EPSS 4.75%
- Veröffentlicht 05.06.2012 22:55:10
- Zuletzt bearbeitet 16.06.2026 23:39:51
Integer overflow in the GetEXIFProperty function in magick/property.c in ImageMagick before 6.7.6-4 allows remote attackers to cause a denial of service (out-of-bounds read) via a large component count for certain EXIF tags in a JPEG image. NOTE: th...
CVE-2012-1798
- EPSS 2.4%
- Veröffentlicht 05.06.2012 22:55:10
- Zuletzt bearbeitet 16.06.2026 23:40:19
The TIFFGetEXIFProperties function in coders/tiff.c in ImageMagick before 6.7.6-3 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted EXIF IFD in a TIFF image.
CVE-2012-0920
- EPSS 6.49%
- Veröffentlicht 05.06.2012 22:55:09
- Zuletzt bearbeitet 16.06.2026 23:38:30
Use-after-free vulnerability in Dropbear SSH Server 0.52 through 2012.54, when command restriction and public key authentication are enabled, allows remote authenticated users to execute arbitrary code and bypass command restrictions via multiple cra...
CVE-2012-1185
- EPSS 29.68%
- Veröffentlicht 05.06.2012 22:55:09
- Zuletzt bearbeitet 16.06.2026 23:39:12
Multiple integer overflows in (1) magick/profile.c or (2) magick/property.c in ImageMagick 6.7.5 and earlier allow remote attackers to cause a denial of service (memory corruption) and possibly execute arbitrary code via crafted offset value in the R...
CVE-2012-1186
- EPSS 1.88%
- Veröffentlicht 05.06.2012 22:55:09
- Zuletzt bearbeitet 16.06.2026 23:39:12
Integer overflow in the SyncImageProfiles function in profile.c in ImageMagick 6.7.5-8 and earlier allows remote attackers to cause a denial of service (infinite loop) via crafted IOP tag offsets in the IFD in an image. NOTE: this vulnerability exis...
CVE-2012-0248
- EPSS 2.1%
- Veröffentlicht 05.06.2012 22:55:07
- Zuletzt bearbeitet 16.06.2026 23:36:59
ImageMagick 6.7.5-7 and earlier allows remote attackers to cause a denial of service (infinite loop and hang) via a crafted image whose IFD contains IOP tags that all reference the beginning of the IDF.