|
268441
|
6.5 |
MEDIUM
Network
|
libming
|
libming
|
listmp3.c in libming 0.4.7 allows remote attackers to unspecified impact via a crafted mp3 file, which triggers an invalid left shift.
|
CWE-189
Numeric Errors
|
CVE-2016-9266
|
2024-11-21 12:00 |
2017-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268442
|
5.5 |
MEDIUM
Local
|
libming
|
libming
|
The printMP3Headers function in listmp3.c in Libming 0.4.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted mp3 file.
|
CWE-369
Divide By Zero
|
CVE-2016-9265
|
2024-11-21 12:00 |
2017-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268443
|
5.5 |
MEDIUM
Local
|
libming
|
libming
|
Buffer overflow in the printMP3Headers function in listmp3.c in Libming 0.4.7 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mp3 file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9264
|
2024-11-21 12:00 |
2017-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268444
|
5.5 |
MEDIUM
Local
|
jasper_project
|
jasper
|
Multiple integer overflows in the (1) jas_realloc function in base/jas_malloc.c and (2) mem_resize function in base/jas_stream.c in JasPer before 1.900.22 allow remote attackers to cause a denial of …
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2016-9262
|
2024-11-21 12:00 |
2017-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268445
|
5.5 |
MEDIUM
Local
|
wvware
|
libwmf
|
The wmf_malloc function in api.c in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (application crash) via a crafted wmf file, which triggers a memory allocation failure.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9011
|
2024-11-21 12:00 |
2017-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268446
|
5.5 |
MEDIUM
Local
|
jasper_project
fedoraproject
|
jasper
fedora
|
The jp2_colr_destroy function in libjasper/jp2/jp2_cod.c in JasPer before 1.900.10 allows remote attackers to cause a denial of service (NULL pointer dereference).
|
CWE-476
NULL Pointer Dereference
|
CVE-2016-8887
|
2024-11-21 12:00 |
2017-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268447
|
7.8 |
HIGH
Local
|
jasper_project
|
jasper
|
The jas_malloc function in libjasper/base/jas_malloc.c in JasPer before 1.900.11 allows remote attackers to have unspecified impact via a crafted file, which triggers a memory allocation failure.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-8886
|
2024-11-21 12:00 |
2017-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268448
|
5.5 |
MEDIUM
Local
|
jasper_project
|
jasper
|
The bmp_getdata function in libjasper/bmp/bmp_dec.c in JasPer before 1.900.9 allows remote attackers to cause a denial of service (NULL pointer dereference) by calling the imginfo command with a craf…
|
CWE-476
NULL Pointer Dereference
|
CVE-2016-8885
|
2024-11-21 12:00 |
2017-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268449
|
6.1 |
MEDIUM
Network
|
novell
|
groupwise
|
A reflected XSS vulnerability exists in the web console of the Document Viewer Agent in Novell GroupWise before 2014 R2 Support Pack 1 Hot Patch 2 that may enable a remote attacker to execute JavaScr…
|
CWE-79
Cross-site Scripting
|
CVE-2016-9169
|
2024-11-21 12:00 |
2017-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
268450
|
6.5 |
MEDIUM
Network
|
novell
|
edirectory
|
A missing X-Frame-Options header in the NDS Utility Monitor in NDSD in Novell eDirectory before 9.0.2 could be used by remote attackers for clickjacking.
|
CWE-20
Improper Input Validation
|
CVE-2016-9168
|
2024-11-21 12:00 |
2017-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
