Alwin Peppels

7 exploits Active since Oct 2016
CVE-2017-6193 EXPLOITDB MEDIUM text WORKING POC
Apng Disassembler < 2.8 - Memory Corruption
Buffer overflow in APNGDis 2.8 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted image containing a malformed image size descriptor in the IHDR chunk.
CVSS 5.5
CVE-2017-6192 EXPLOITDB MEDIUM text WORKING POC
Apng Disassembler < 2.8 - Memory Corruption
Buffer overflow in APNGDis 2.8 and earlier allows a remote attackers to cause denial of service and possibly execute arbitrary code via a crafted image containing a malformed chunk size descriptor.
CVSS 5.5
CVE-2016-9018 EXPLOITDB MEDIUM text WRITEUP
RealNetworks RealPlayer <18.1.5.705 - Memory Corruption
Improper handling of a repeating VRAT chunk in qcpfformat.dll allows attackers to cause a Null pointer dereference and crash in RealNetworks RealPlayer 18.1.5.705 through a crafted .QCP media file.
CVSS 5.5
CVE-2017-16356 EXPLOITDB MEDIUM text WORKING POC
Kubik-Rubik SIGE <3.3.0 - XSS
Reflected XSS in Kubik-Rubik SIGE (aka Simple Image Gallery Extended) before 3.3.0 allows attackers to execute JavaScript in a victim's browser by having them visit a plugins/content/sige/plugin_sige/print.php link with a crafted img, name, or caption parameter.
CVSS 6.1
CVE-2017-6192 EXPLOITDB MEDIUM text WORKING POC
Apng Disassembler < 2.8 - Memory Corruption
Buffer overflow in APNGDis 2.8 and earlier allows a remote attackers to cause denial of service and possibly execute arbitrary code via a crafted image containing a malformed chunk size descriptor.
CVSS 5.5
CVE-2017-6193 EXPLOITDB MEDIUM text WORKING POC
Apng Disassembler < 2.8 - Memory Corruption
Buffer overflow in APNGDis 2.8 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted image containing a malformed image size descriptor in the IHDR chunk.
CVSS 5.5
CVE-2017-6191 EXPLOITDB HIGH text WORKING POC
Apng Disassembler < 2.8 - Memory Corruption
Buffer overflow in APNGDis 2.8 and below allows a remote attacker to execute arbitrary code via a crafted filename.
CVSS 7.8