Vulnerabilities > Entropymine > Imageworsener > Medium

DATE CVE VULNERABILITY TITLE RISK
2017-05-19 CVE-2017-9093 Infinite Loop vulnerability in Entropymine Imageworsener
The my_skip_input_data_fn function in imagew-jpeg.c in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted image.
network
low complexity
entropymine CWE-835
6.5
2017-04-29 CVE-2017-8327 Resource Exhaustion vulnerability in Entropymine Imageworsener
The bmpr_read_uncompressed function in imagew-bmp.c in libimageworsener.a in ImageWorsener before 1.3.1 allows remote attackers to cause a denial of service (memory consumption) via a crafted image.
network
low complexity
entropymine CWE-400
6.5
2017-04-19 CVE-2017-7962 Divide By Zero vulnerability in Entropymine Imageworsener 1.3.0
The iwgif_read_image function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file.
local
low complexity
entropymine CWE-369
5.5
2017-04-18 CVE-2017-7940 Resource Exhaustion vulnerability in Entropymine Imageworsener 1.3.0
The iw_read_gif_file function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to consume an amount of available memory via a crafted file.
local
low complexity
entropymine CWE-400
5.5
2017-04-18 CVE-2017-7939 Out-of-bounds Read vulnerability in Entropymine Imageworsener 1.3.0
The read_next_pam_token function in imagew-pnm.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (stack-based buffer over-read) via a crafted file.
local
low complexity
entropymine CWE-125
5.5
2017-04-10 CVE-2017-7624 Missing Release of Resource after Effective Lifetime vulnerability in Entropymine Imageworsener 1.3.0
The iw_read_bmp_file function in imagew-bmp.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to consume an amount of available memory via a crafted file.
local
low complexity
entropymine CWE-772
5.5
2017-04-10 CVE-2017-7623 Out-of-bounds Read vulnerability in Entropymine Imageworsener 1.3.0
The iwmiffr_convert_row32 function in imagew-miff.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file.
local
low complexity
entropymine CWE-125
5.5
2017-04-06 CVE-2017-7454 Out-of-bounds Read vulnerability in Entropymine Imageworsener 1.3.0
The iwgif_record_pixel function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted file.
local
low complexity
entropymine CWE-125
5.5
2017-04-06 CVE-2017-7453 NULL Pointer Dereference vulnerability in Entropymine Imageworsener 1.3.0
The iwgif_record_pixel function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
local
low complexity
entropymine CWE-476
5.5
2017-04-06 CVE-2017-7452 NULL Pointer Dereference vulnerability in Entropymine Imageworsener 1.3.0
The iwbmp_read_info_header function in imagew-bmp.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
local
low complexity
entropymine CWE-476
5.5