CVE-2015-8664

HIGH Year: 2015
CVSS v3 Score
8.8
High
CVSS v2 Score
7.5
High
Weakness Type
CWE-189
View all →

Vulnerability Description

Integer overflow in the WebCursor::Deserialize function in content/common/cursors/webcursor.cc in Google Chrome before 47.0.2526.106 allows remote attackers to cause a denial of service or possibly have unspecified other impact via an RGBA pixel array with crafted dimensions, a different vulnerability than CVE-2015-6792.

Related Vulnerabilities

CVE-2011-0663

HIGH
CVSS:8.8(High)

Multiple integer overflows in the Microsoft (1) JScript 5.6 through 5.8 and (2) VBScript 5.6 through 5.8 scripting engines allow remote attackers to execute arbitrary code via a crafted web page, aka ...

CWE-1892011

CVE-2013-0006

HIGH
CVSS:8.8(High)

Microsoft XML Core Services (aka MSXML) 3.0, 5.0, and 6.0 does not properly parse XML content, which allows remote attackers to execute arbitrary code via a crafted web page, aka "MSXML Integer Trunca...

CWE-1892013

CVE-2015-8540

HIGH
CVSS:8.8(High)

Integer underflow in the png_check_keyword function in pngwutil.c in libpng 0.90 through 0.99, 1.0.x before 1.0.66, 1.1.x and 1.2.x before 1.2.56, 1.3.x and 1.4.x before 1.4.19, and 1.5.x before 1.5.2...

CWE-1892015

CVE-2016-1968

HIGH
CVSS:8.8(High)

Integer underflow in Brotli, as used in Mozilla Firefox before 45.0, allows remote attackers to execute arbitrary code or cause a denial of service (buffer overflow) via crafted data with brotli compr...

CWE-1892016

CVE-2022-3970

HIGH
CVSS:8.8(High)

A vulnerability was found in LibTIFF. It has been classified as critical. This affects the function TIFFReadRGBATileExt of the file libtiff/tif_getimage.c. The manipulation leads to integer overflow. ...

CWE-1892022

CVE-2022-4202

HIGH
CVSS:8.8(High)

A vulnerability, which was classified as problematic, was found in GPAC 2.1-DEV-rev490-g68064e101-master. Affected is the function lsr_translate_coords of the file laser/lsr_dec.c. The manipulation le...

CWE-1892022