Creditee: Parvez Anwar

Known Contact Information:

  • None at this time

Known Affiliations:

Disclosed Vulnerabilities (48):

Disc. DateOSVDB IDCVEIDTitle
2013-12-16 101061 2013-3944 IrfanView MR-SID PlugIn IMAGE Tag Parsing Stack Buffer Overflow
2013-12-16 101062 2013-3945 IrfanView MR-SID PlugIn nband Tag Parsing Uninitialized Memory Dereference Arbitrary Code Execution
2013-12-16 101063 2013-3946 IrfanView MR-SID PlugIn levels Header Parsing Integer Overflow
2013-11-21 100104 2013-0725 ERDAS ER Viewer dwmapi.dll / irml.DLL Multiple File Handling Path Subversion Arbitrary DLL Injection Code Execution
2013-07-25 95658 2013-3249 DameWare Remote Service DWExporter.exe Data Importing Stack Buffer Overflow
2013-04-23 92693 2013-0728 ERDAS APOLLO ECWP Browser Plugin NCSAddOn.dll Property String Handling Stack Buffer Overflow
2013-04-23 92694 2013-0726 ERDAS ER Viewer ermapper_u.dll ERM_convert_to_correct_webpath() Function ERS File Handling Stack Buffer Overflow
2013-04-22 92648 2013-0727 Global Mapper dwmapi.dll / ibfs32.dll Path Subversion Arbitrary DLL Injection Code Execution
2012-09-26 85774 Foxit Reader fxdecod1.dll Path Subversion Arbitrary DLL Injection Code Execution
2012-09-04 85123 2012-4756
2012-4757
2012-4758
CyberLink Multiple Product Multiple Library Path Subversion Path Subversion Arbitrary DLL Injection Code Execution
2012-09-03 85122 CyberLink LabelPrint LPP File Multiple Attribute Handling Overflow
2012-09-03 85150 CyberLink KoanBox ActiveX koanbox.dll Module Run() Method Overflow
2012-05-16 82002 2012-4882 3D XML Player dwmapi.dll / JT0DevPhase.dll Path Subversion Arbitrary DLL Injection Code Execution
2012-05-16 82003 2012-4883 3DVIA Composer dwmapi.dll / ibfs32.dll Path Subversion Arbitrary DLL Injection Code Execution
2012-05-16 82004 3D Life Player WebPlayer ActiveX Multiple Boundary Error SRC Property String Parsing Remote Overflow
2012-03-29 80716 2012-5904 IrfanView Boundary Error Multiple Image File Handling Remote Overflow
2012-03-12 80029 2012-4880 DVD Architect Pro / Studio enc_mp2v.200 / CFHDDecoder.dll Path Subversion Arbitrary DLL Injection Code Execution
2012-03-12 80031 2012-4881 moviEZ HD avrt.dll Path Subversion Arbitrary DLL Injection Code Execution
2012-03-12 80028 Jam Trax Xpress sage.dll Path Subversion Arbitrary DLL Injection Code Execution
2012-03-12 80030 Vegas Movie Studio HD enc_mp2v.200 / CFHDDecoder.dll Path Subversion Arbitrary DLL Injection Code Execution
2012-02-09 78985 2012-1055 PhotoLine Quantization Default (QCD) Marker Segment JPEG2000 File Handling Overflow
2012-02-07 78904 2012-1051 XnView Xjp2.dll JPEG2000 Plugin Quantization Default (QCD) Marker Segment JPEG2000 File Handling Overflow
2012-02-07 78905 2012-1052 IvanView Quantization Default (QCD) Marker Segment JPEG2000 File Handling Overflow
2012-01-31 78661 2012-0977 LuraWave JP2 ActiveX (jp2_x.dll) Quantization Default (QCD) Marker Segment JPEG2000 File Handling Remote Overflow
2012-01-31 78662 2012-0978 LuraWave JP2 Browser Plug-In npjp2.dll Quantization Default (QCD) Marker Segment JPEG2000 File Handling Remote Overflow
2012-01-27 78526 2012-5006 Caminova DjVu Browser Plug-in npdjvu.dll Module Sjbz Chunk djvu File Handling Remote Overflow
2012-01-16 78333 2012-0897 IrfanView PlugIns JPEG2000 Plugin Quantization Default (QCD) Marker Segment JPEG2000 Image Handling Remote Overflow
2012-01-10 78272 2012-6501 HP PKI ActiveX (HPPKI.ocx) KillProcess() Method Process Name Argument Parsing Arbitrary Process Termination
2012-01-10 78212 2012-0009 Microsoft Windows Object Packager Path Subversion packager.exe Loading Remote Code Execution
2011-12-12 77741 2011-4141 RSA SecurID Software Token Path Subversion Arbitrary DLL Injection Code Execution
2011-09-14 75379 2011-1980 Microsoft Office MSO.dll Path Subversion Arbitrary DLL Injection Code Execution
2011-06-07 72897 2011-5152 ACDSee Photo Editor 2008 Path Subversion Arbitrary DLL Injection Code Execution
2011-06-07 72898 2011-5153 ACDSee FotoSlate dwmapi.dll Path Subversion Arbitrary DLL Injection Code Execution
2011-06-07 72899 2011-5151 ACDSee Picture Frame Manager ShellIntMgrPFMU.dll Path Subversion Arbitrary DLL Injection Code Execution
2011-04-29 72136 2011-1207 Data Dynamics ActiveBar ActiveBar1 ActiveX SetLayoutData() Method Data Argument Arbitrary Code Execution
2011-04-12 71785 ISIS Papyrus AFP Viewer npax ActiveX (activexpav31.dll) Multiple Method Overflow
2011-03-02 75075 PDF-Pro dwmapi.dll Path Subversion Arbitrary DLL Injection Code Execution
2011-03-02 75076 PDF-Pro PDF Reader ActiveX (ePapyrusReader.ocx) open() Method Remote Overflow
2011-03-02 75077 PDF-Pro PDF Reader ActiveX (ePapyrusReader.ocx) open_stream() Method Remote Overflow
2011-03-02 75078 PDF-Pro PDF Reader ActiveX (ePapyrusReader.ocx) open_stream() Method Use-after-free Memory Dereference Remote Code Execution
2011-03-02 75079 PDF-Pro PDF Reader ActiveX (ePapyrusReader.ocx) Corrupted Dictionary Arrays Method Use-after-free PDF File Handling Memory Dereference Remote Code Execution
2011-03-02 75080 PDF-Pro PDF Reader ActiveX (ePapyrusReader.ocx) RemoveFile() Method Arbitrary File Deletion
2011-03-02 75081 PDF-Pro PDF Reader ActiveX (ePapyrusReader.ocx) Multiple Method Arbitrary File Download
2011-03-02 75082 PDF-Pro PDF Reader ActiveX (ePapyrusReader.ocx) Multiple Method Arbitrary File Access
2011-02-08 71392 2011-0588 Adobe Reader / Acrobat Unspecified Library Loading Code Execution (2011-0588)
2010-12-06 69636 WebEx Meeting Manager WebexUCFObject ActiveX Path Subversion Arbitrary DLL Injection Code Execution
2010-11-29 69503 2009-5118 McAfee VirusScan Enterprise Path Subversion Arbitrary DLL Injection Code Execution
2007-04-25 35321 2007-2322 Nero MediaHome NMMediaServer.exe Crafted Packet Remote DoS

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2002 - 2014 Open Sourced Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use