Shodan
Vulnerabilities
Vulnerable Software
Entropymine:  Security Vulnerabilities
CVE-2017-9205
The iw_get_ui16be function in imagew-util.c:422:24 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (invalid read and SEGV) via a crafted image, related to imagew-jpeg.c.
CVSS Score
6.5
EPSS Score
0.004
Published
2017-05-23
CVE-2017-9206
The iw_get_ui16le function in imagew-util.c:405:23 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted image, related to imagew-jpeg.c.
CVSS Score
6.5
EPSS Score
0.004
Published
2017-05-23
CVE-2017-9207
The iw_get_ui16be function in imagew-util.c:422:24 in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted image, related to imagew-jpeg.c.
CVSS Score
6.5
EPSS Score
0.004
Published
2017-05-23
CVE-2017-9093
The my_skip_input_data_fn function in imagew-jpeg.c in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted image.
CVSS Score
6.5
EPSS Score
0.003
Published
2017-05-19
CVE-2017-9094
The lzw_add_to_dict function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted image.
CVSS Score
6.5
EPSS Score
0.003
Published
2017-05-19
CVE-2017-8325
The iw_process_cols_to_intermediate function in imagew-main.c in libimageworsener.a in ImageWorsener before 1.3.1 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted image.
CVSS Score
8.8
EPSS Score
0.01
Published
2017-04-29
CVE-2017-8326
libimageworsener.a in ImageWorsener before 1.3.1 has "left shift cannot be represented in type int" undefined behavior issues, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image, related to imagew-bmp.c and imagew-util.c.
CVSS Score
8.8
EPSS Score
0.009
Published
2017-04-29
CVE-2017-8327
The bmpr_read_uncompressed function in imagew-bmp.c in libimageworsener.a in ImageWorsener before 1.3.1 allows remote attackers to cause a denial of service (memory consumption) via a crafted image.
CVSS Score
6.5
EPSS Score
0.005
Published
2017-04-29
CVE-2017-7962
The iwgif_read_image function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file.
CVSS Score
5.5
EPSS Score
0.003
Published
2017-04-19
CVE-2017-7939
The read_next_pam_token function in imagew-pnm.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (stack-based buffer over-read) via a crafted file.
CVSS Score
5.5
EPSS Score
0.002
Published
2017-04-18


Products
Pricing
Contact Us

Shodan ® - All rights reserved