Aggregates CVE and security vulnerability intelligence across all icoutils_project-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Historical issues involve various input-handling and memory-safety problems that may affect software stability and security.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2017-5333 | Integer overflow in the extract_group_icon_cursor_resource function in b/wrestool/extract.c in icoutils before 0.31.1 allows local users to cause a denial of service (process crash) or execute arbitrary code via a crafted executable file. | [email protected] | 7.8 | 0.21% | 2019-11-04 | 2024-11-21 |
| CVE-2017-5332 | The extract_group_icon_cursor_resource in wrestool/extract.c in icoutils before 0.31.1 can access unallocated memory, which allows local users to cause a denial of service (process crash) and execute arbitrary code via a crafted executable. | [email protected] | 7.8 | 0.21% | 2019-11-04 | 2024-11-21 |
| CVE-2017-5331 | Integer overflow in the check_offset function in b/wrestool/fileread.c in icoutils before 0.31.1 allows local users to cause a denial of service (process crash) and execute arbitrary code via a crafted executable. | [email protected] | 7.8 | 0.09% | 2019-11-04 | 2024-11-21 |
| CVE-2017-5208 | Integer overflow in the wrestool program in icoutils before 0.31.1 allows remote attackers to cause a denial of service (memory corruption) via a crafted executable, which triggers a denial of service (application crash) or the possibility of execution of arbitrary code. | [email protected] | 8.8 | 0.68% | 2017-08-22 | 2026-05-13 |
| CVE-2017-6011 | An issue was discovered in icoutils 0.31.1. An out-of-bounds read leading to a buffer overflow was observed in the "simple_vec" function in the "extract.c" source file. This affects icotool. | [email protected] | 5.5 | 0.20% | 2017-02-16 | 2026-05-13 |
| CVE-2017-6010 | An issue was discovered in icoutils 0.31.1. A buffer overflow was observed in the "extract_icons" function in the "extract.c" source file. This issue can be triggered by processing a corrupted ico file and will result in an icotool crash. | [email protected] | 5.5 | 0.20% | 2017-02-16 | 2026-05-13 |
| CVE-2017-6009 | An issue was discovered in icoutils 0.31.1. A buffer overflow was observed in the "decode_ne_resource_id" function in the "restable.c" source file. This is happening because the "len" parameter for memcpy is not checked for size and thus becomes a negative integer in the process, resulting in a failed memcpy. This affects wrestool. | [email protected] | 5.5 | 0.16% | 2017-02-16 | 2026-05-13 |