|
248061
|
9.8 |
CRITICAL
Network
|
usb_pratirodh_project
|
usb_pratirodh
|
USB Pratirodh allows remote attackers to conduct XML External Entity (XXE) attacks via XML data in usb.xml.
|
CWE-611
XXE
|
CVE-2017-6895
|
2024-11-21 12:30 |
2017-03-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248062
|
9.8 |
CRITICAL
Network
|
alienvault
nfsen
|
ossim
unified_security_management
nfsen
|
AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 have an error in privilege dropping and unnecessarily execute the NfSen Perl code as root, aka AlienVault ID ENG-104945, a different vulne…
|
CWE-273
Improper Check for Dropped Privileges
|
CVE-2017-6972
|
2024-11-21 12:30 |
2017-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248063
|
8.8 |
HIGH
Network
|
alienvault
nfsen
|
ossim
unified_security_management
nfsen
|
AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 allow remote authenticated users to execute arbitrary commands in a privileged context, or launch a reverse shell, via vectors involving t…
|
CWE-74
Injection
|
CVE-2017-6971
|
2024-11-21 12:30 |
2017-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248064
|
8.4 |
HIGH
Local
|
alienvault
nfsen
|
ossim
unified_security_management
nfsen
|
AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 allow local users to execute arbitrary commands in a privileged context via an NfSen socket, aka AlienVault ID ENG-104863.
|
CWE-78
OS Command
|
CVE-2017-6970
|
2024-11-21 12:30 |
2017-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248065
|
5.5 |
MEDIUM
Local
|
audiofile
|
audiofile
|
Integer overflow in modules/MSADPCM.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-6839
|
2024-11-21 12:30 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248066
|
5.5 |
MEDIUM
Local
|
audiofile
|
audiofile
|
Integer overflow in sfcommands/sfconvert.c in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-6838
|
2024-11-21 12:30 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248067
|
5.5 |
MEDIUM
Local
|
audiofile
|
audiofile
|
WAVE.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via vectors related to a large number of coefficients.
|
CWE-20
Improper Input Validation
|
CVE-2017-6837
|
2024-11-21 12:30 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248068
|
5.5 |
MEDIUM
Local
|
audiofile
debian
|
audiofile
debian_linux
|
Heap-based buffer overflow in the Expand3To4Module::run function in libaudiofile/modules/SimpleModule.h in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0 allows re…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-6836
|
2024-11-21 12:30 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248069
|
5.5 |
MEDIUM
Local
|
audiofile
|
audiofile
|
The reset1 function in libaudiofile/modules/BlockCodec.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a craf…
|
CWE-369
Divide By Zero
|
CVE-2017-6835
|
2024-11-21 12:30 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248070
|
5.5 |
MEDIUM
Local
|
audiofile
debian
|
audiofile
debian_linux
|
Heap-based buffer overflow in the ulaw2linear_buf function in G711.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0, 0.2.7 allows remote attackers to cause a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-6834
|
2024-11-21 12:30 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
