|
265791
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The hid_input_field function in drivers/hid/hid-core.c in the Linux kernel before 4.6 allows physically proximate attackers to obtain sensitive information from kernel memory or cause a denial of ser…
|
CWE-125
Out-of-bounds Read
|
CVE-2016-7915
|
2024-11-21 11:58 |
2016-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265792
|
5.5 |
MEDIUM
Local
|
linux
|
linux_kernel
|
The assoc_array_insert_into_terminal_node function in lib/assoc_array.c in the Linux kernel before 4.5.3 does not check whether a slot is a leaf, which allows local users to obtain sensitive informat…
|
CWE-125
CWE-476
Out-of-bounds Read
NULL Pointer Dereference
|
CVE-2016-7914
|
2024-11-21 11:58 |
2016-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265793
|
7.8 |
HIGH
Local
|
linux
canonical
|
linux_kernel
ubuntu_linux
|
The xc2028_set_config function in drivers/media/tuners/tuner-xc2028.c in the Linux kernel before 4.6 allows local users to gain privileges or cause a denial of service (use-after-free) via vectors in…
|
CWE-416
Use After Free
|
CVE-2016-7913
|
2024-11-21 11:58 |
2016-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265794
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
Use-after-free vulnerability in the ffs_user_copy_worker function in drivers/usb/gadget/function/f_fs.c in the Linux kernel before 4.5.3 allows local users to gain privileges by accessing an I/O data…
|
CWE-416
Use After Free
|
CVE-2016-7912
|
2024-11-21 11:58 |
2016-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265795
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
Race condition in the get_task_ioprio function in block/ioprio.c in the Linux kernel before 4.6.6 allows local users to gain privileges or cause a denial of service (use-after-free) via a crafted iop…
|
CWE-362
CWE-416
Race Condition
Use After Free
|
CVE-2016-7911
|
2024-11-21 11:58 |
2016-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265796
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
Use-after-free vulnerability in the disk_seqf_stop function in block/genhd.c in the Linux kernel before 4.7.1 allows local users to gain privileges by leveraging the execution of a certain stop opera…
|
CWE-416
Use After Free
|
CVE-2016-7910
|
2024-11-21 11:58 |
2016-11-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265797
|
7.8 |
HIGH
Local
|
teradata
|
studio_express
|
The installation script studioexpressinstall for Teradata Studio Express 15.12.00.00 creates files in /tmp insecurely. A malicious local user could create a symlink in /tmp and possibly clobber syste…
|
CWE-264
CWE-59
Permissions, Privileges, and Access Controls
Link Following
|
CVE-2016-7490
|
2024-11-21 11:58 |
2016-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265798
|
9.8 |
CRITICAL
Network
|
teradata
|
virtual_machine
|
Teradata Virtual Machine Community Edition v15.10's perl script /opt/teradata/gsctools/bin/t2a.pl creates files in /tmp in an insecure manner, this may lead to elevated code execution.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-7489
|
2024-11-21 11:58 |
2016-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265799
|
7.8 |
HIGH
Local
|
teradata
|
virtual_machine
|
Teradata Virtual Machine Community Edition v15.10 has insecure file permissions on /etc/luminex/pkgmgr. These could allow a local user to modify its contents and execute commands as root.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-7488
|
2024-11-21 11:58 |
2016-11-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265800
|
8.8 |
HIGH
Network
|
adobe
redhat
|
flash_player
flash_player_for_linux
enterprise_linux_server
enterprise_linux_workstation
enterprise_linux_desktop
|
Adobe Flash Player versions 23.0.0.205 and earlier, 11.2.202.643 and earlier have an exploitable type confusion vulnerability. Successful exploitation could lead to arbitrary code execution.
|
CWE-704
Incorrect Type Conversion or Cast
|
CVE-2016-7865
|
2024-11-21 11:58 |
2016-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
