Vulnerabilities > TCL TK
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-02-07 | CVE-2008-0553 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in TCL TK TCL TK Stack-based buffer overflow in the ReadImage function in tkImgGIF.c in Tk (Tcl/Tk) before 8.5.1 allows remote attackers to execute arbitrary code via a crafted GIF image, a similar issue to CVE-2006-4484. | 6.8 |
| 2008-01-09 | CVE-2007-6067 | Numeric Errors vulnerability in multiple products Algorithmic complexity vulnerability in the regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service (memory consumption) via a crafted "complex" regular expression with doubly-nested states. | 6.8 |
| 2008-01-09 | CVE-2007-4769 | Numeric Errors vulnerability in multiple products The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service (backend crash) via an out-of-bounds backref number. | 6.8 |
| 2007-10-12 | CVE-2007-5378 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in TCL TK Toolkit Buffer overflow in the FileReadGIF function in tkImgGIF.c for Tk Toolkit 8.4.12 and earlier, and 8.3.5 and earlier, allows user-assisted attackers to cause a denial of service (segmentation fault) via an animated GIF in which the first subimage is smaller than a subsequent subimage, which triggers the overflow in the ReadImage function, a different vulnerability than CVE-2007-5137. | 4.3 |
| 2007-09-28 | CVE-2007-5137 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in TCL TK TCL TK 8.4.13/8.4.14/8.4.15 Buffer overflow in the ReadImage function in generic/tkImgGIF.c in Tcl (Tcl/Tk) 8.4.13 through 8.4.15 allows remote attackers to execute arbitrary code via multi-frame interlaced GIF files in which later frames are smaller than the first. | 6.8 |
| 2007-05-29 | CVE-2007-2877 | Local Security vulnerability in Tcl Tk Buffer overflow in tcl/win/tclWinReg.c in Tcl (Tcl/Tk) before 8.5a6 allows local users to gain privileges via long registry key paths. | 7.2 |