Vulnerabilities > Autotrace Project

DATE CVE VULNERABILITY TITLE RISK
2017-05-23 CVE-2017-9193 Out-of-bounds Read vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer over-read in the ReadImage function in input-tga.c:538:33.
network
low complexity
autotrace-project CWE-125
7.5
2017-05-23 CVE-2017-9192 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the ReadImage function in input-tga.c:528:7.
network
low complexity
autotrace-project CWE-119
7.5
2017-05-23 CVE-2017-9191 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a heap-based buffer overflow in the rle_fread function in input-tga.c:252:15.
network
low complexity
autotrace-project CWE-119
7.5
2017-05-23 CVE-2017-9190 Use After Free vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid free), related to the free_bitmap function in bitmap.c:24:5.
network
low complexity
autotrace-project CWE-416
5.0
2017-05-23 CVE-2017-9189 Out-of-bounds Read vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 allows remote attackers to cause a denial of service (invalid read and application crash), related to the GET_COLOR function in color.c:16:11.
network
low complexity
autotrace-project CWE-125
5.0
2017-05-23 CVE-2017-9188 Improper Input Validation vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a "left shift ...
network
low complexity
autotrace-project CWE-20
7.5
2017-05-23 CVE-2017-9187 Integer Overflow or Wraparound vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-bmp.c:486:7.
network
low complexity
autotrace-project CWE-190
7.5
2017-05-23 CVE-2017-9186 Integer Overflow or Wraparound vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-bmp.c:326:17.
network
low complexity
autotrace-project CWE-190
7.5
2017-05-23 CVE-2017-9185 Integer Overflow or Wraparound vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-bmp.c:319:7.
network
low complexity
autotrace-project CWE-190
7.5
2017-05-23 CVE-2017-9184 Integer Overflow or Wraparound vulnerability in Autotrace Project Autotrace 0.31.1
libautotrace.a in AutoTrace 0.31.1 has a "cannot be represented in type int" issue in input-bmp.c:314:7.
network
low complexity
autotrace-project CWE-190
7.5