Vulnerability Spotlight: FreeImage Library XMP Image Handling Code Execution Vulnerability

/in /von

By Talos Group Exploit uses a maliciously crafted image file as an email attachment or via an instant message.

Source:: Cisco Security Notice

Vulnerability Spotlight: FreeImage Library XMP Image Handling Code Execution Vulnerability

/in /von

By Talos Group FreeImage is widely used software integrated into over 100 products ranging from free to paid licensing and include multimedia software, games, developer tools, PDF generators and more. FreeImage makes use of a common file format created by Adobe, Extensible Metadata Platform (XMP) that allows real-time managing of metadata. Per Adobe, the XMP file format, allows […]

Source:: Cisco Security Notice

Vulnerability Spotlight: FreeImage Library XMP Image Handling Code Execution Vulnerability

/in /von

By Talos Group Exploit uses a maliciously crafted image file as an email attachment or via an instant message.

Source:: Cisco Security Notice

Vulnerability Spotlight: FreeImage Library XMP Image Handling Code Execution Vulnerability

/in /von

By Talos Group FreeImage is widely used software integrated into over 100 products ranging from free to paid licensing and include multimedia software, games, developer tools, PDF generators and more. FreeImage makes use of a common file format created by Adobe, Extensible Metadata Platform (XMP) that allows real-time managing of metadata. Per Adobe, the XMP file format, allows […]

Source:: Cisco Security Notice

Cybersecurity Now and In the Future – Our Shared Responsibility

/in /von

By John N. Stewart October is Cyber Security Awareness Month when participating governments and private industry jointly sponsor advocacy campaigns to promote awareness and ensure that every person around the world has the proper information and resources to be safer and more secure online. As a founding member of the National Cyber Security Alliance (NCSA), Cisco has actively participated […]

Source:: Cisco Security Notice

Cybersecurity Now and In the Future – Our Shared Responsibility

/in /von

By John N. Stewart October is Cyber Security Awareness Month when participating governments and private industry jointly sponsor advocacy campaigns to promote awareness and ensure that every person around the world has the proper information and resources to be safer and more secure online. As a founding member of the National Cyber Security Alliance (NCSA), Cisco has actively participated […]

Source:: Cisco Security Notice

Vulnerability Spotlight: OpenJPEG JPEG2000 mcc record Code Execution Vulnerability

/in /von

By Talos Group Vulnerability discovered by Aleksandar Nikolic of Cisco Talos Overview Talos has identified an exploitable out-of-bounds vulnerability in the JPEG 2000 image file format parser implemented in OpenJPEG library (TALOS-2016-0193/CVE-2016-8332). The JPEG 2000 file format is commonly used for embedding images inside PDF documents. This particular vulnerability could allow an out-of-bound heap write to occur, resulting […]

Source:: Cisco Security Notice

Vulnerability Spotlight: OpenJPEG JPEG2000 mcc record Code Execution Vulnerability

/in /von

By Talos Group Vulnerability discovered by Aleksandar Nikolic of Cisco Talos Overview Talos has identified an exploitable out-of-bounds vulnerability in the JPEG 2000 image file format parser implemented in OpenJPEG library (TALOS-2016-0193/CVE-2016-8332). The JPEG 2000 file format is commonly used for embedding images inside PDF documents. This particular vulnerability could allow an out-of-bound heap write to occur, resulting […]

Source:: Cisco Security Notice