Vulnerabilities > Jasper Project > Critical

DATE CVE VULNERABILITY TITLE RISK
2008-10-02 CVE-2008-3522 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in multiple products
Buffer overflow in the jas_stream_printf function in libjasper/base/jas_stream.c in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via vectors related to the mif_hdr_put function and use of vsprintf.
network
low complexity
redhat jasper-project CWE-119
critical
10.0
2008-10-02 CVE-2008-3520 Numeric Errors vulnerability in Jasper Project Jasper 1.900.1
Multiple integer overflows in JasPer 1.900.1 might allow context-dependent attackers to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.
network
jasper-project CWE-189
critical
9.3