Vulnerabilities > Entropymine > Imageworsener

DATE CVE VULNERABILITY TITLE RISK
2017-05-19 CVE-2017-9094 Infinite Loop vulnerability in Entropymine Imageworsener
The lzw_add_to_dict function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted image.
network
low complexity
entropymine CWE-835
6.5
2017-05-19 CVE-2017-9093 Infinite Loop vulnerability in Entropymine Imageworsener
The my_skip_input_data_fn function in imagew-jpeg.c in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted image.
network
low complexity
entropymine CWE-835
6.5
2017-04-29 CVE-2017-8327 Resource Exhaustion vulnerability in Entropymine Imageworsener
The bmpr_read_uncompressed function in imagew-bmp.c in libimageworsener.a in ImageWorsener before 1.3.1 allows remote attackers to cause a denial of service (memory consumption) via a crafted image.
network
low complexity
entropymine CWE-400
6.5
2017-04-29 CVE-2017-8326 Incorrect Calculation vulnerability in Entropymine Imageworsener
libimageworsener.a in ImageWorsener before 1.3.1 has "left shift cannot be represented in type int" undefined behavior issues, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image, related to imagew-bmp.c and imagew-util.c.
network
low complexity
entropymine CWE-682
8.8
2017-04-29 CVE-2017-8325 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Entropymine Imageworsener
The iw_process_cols_to_intermediate function in imagew-main.c in libimageworsener.a in ImageWorsener before 1.3.1 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted image.
network
low complexity
entropymine CWE-119
8.8
2017-04-19 CVE-2017-7962 Divide By Zero vulnerability in Entropymine Imageworsener 1.3.0
The iwgif_read_image function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file.
local
low complexity
entropymine CWE-369
5.5
2017-04-18 CVE-2017-7940 Resource Exhaustion vulnerability in Entropymine Imageworsener 1.3.0
The iw_read_gif_file function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to consume an amount of available memory via a crafted file.
local
low complexity
entropymine CWE-400
5.5
2017-04-18 CVE-2017-7939 Out-of-bounds Read vulnerability in Entropymine Imageworsener 1.3.0
The read_next_pam_token function in imagew-pnm.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (stack-based buffer over-read) via a crafted file.
local
low complexity
entropymine CWE-125
5.5
2017-04-10 CVE-2017-7624 Missing Release of Resource after Effective Lifetime vulnerability in Entropymine Imageworsener 1.3.0
The iw_read_bmp_file function in imagew-bmp.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to consume an amount of available memory via a crafted file.
local
low complexity
entropymine CWE-772
5.5
2017-04-10 CVE-2017-7623 Out-of-bounds Read vulnerability in Entropymine Imageworsener 1.3.0
The iwmiffr_convert_row32 function in imagew-miff.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file.
local
low complexity
entropymine CWE-125
5.5