Vulnerabilities > Uclouvain > Critical

DATE CVE VULNERABILITY TITLE RISK
2014-04-18 CVE-2013-4290 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Uclouvain Openjpeg
Stack-based buffer overflow in OpenJPEG before 1.5.2 allows remote attackers to have unspecified impact via unknown vectors to (1) lib/openjp3d/opj_jp3d_compress.c, (2) bin/jp3d/convert.c, or (3) lib/openjp3d/event.c.
network
low complexity
uclouvain CWE-119
critical
 10.0
10
2014-04-18 CVE-2013-4289 Numeric Errors vulnerability in Uclouvain Openjpeg
Multiple integer overflows in lib/openjp3d/jp3d.c in OpenJPEG before 1.5.2 allow remote attackers to have unspecified impact and vectors, which trigger a heap-based buffer overflow.
network
low complexity
uclouvain CWE-189
critical
 10.0
10
2012-04-11 CVE-2012-1499 Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Uclouvain Openjpeg
The JPEG 2000 codec (jp2.c) in OpenJPEG before 1.5 allows remote attackers to execute arbitrary code via a crafted palette index in a CMAP record of a JPEG image, which triggers memory corruption, aka "out-of heap-based buffer write."
network
uclouvain CWE-119
critical
 9.3
9.3