Vulnerabilities > TCL TK > TCL TK

DATE CVE VULNERABILITY TITLE RISK
2008-02-07 CVE-2008-0553 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in TCL TK TCL TK
Stack-based buffer overflow in the ReadImage function in tkImgGIF.c in Tk (Tcl/Tk) before 8.5.1 allows remote attackers to execute arbitrary code via a crafted GIF image, a similar issue to CVE-2006-4484.
network
tcl-tk CWE-119
6.8
2008-01-09 CVE-2007-6067 Numeric Errors vulnerability in multiple products
Algorithmic complexity vulnerability in the regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service (memory consumption) via a crafted "complex" regular expression with doubly-nested states.
network
low complexity
postgresql tcl-tk CWE-189
6.8
2008-01-09 CVE-2007-4769 Numeric Errors vulnerability in multiple products
The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service (backend crash) via an out-of-bounds backref number.
network
low complexity
postgresql tcl-tk CWE-189
6.8
2007-09-28 CVE-2007-5137 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in TCL TK TCL TK 8.4.13/8.4.14/8.4.15
Buffer overflow in the ReadImage function in generic/tkImgGIF.c in Tcl (Tcl/Tk) 8.4.13 through 8.4.15 allows remote attackers to execute arbitrary code via multi-frame interlaced GIF files in which later frames are smaller than the first.
network
tcl-tk CWE-119
6.8
2007-05-29 CVE-2007-2877 Local Security vulnerability in Tcl Tk
Buffer overflow in tcl/win/tclWinReg.c in Tcl (Tcl/Tk) before 8.5a6 allows local users to gain privileges via long registry key paths.
local
low complexity
tcl-tk
7.2