|
266241
|
5.4 |
MEDIUM
Network
|
apache
|
guacamole
|
Cross-site scripting (XSS) vulnerability in the file browser in Guacamole 0.9.8 and 0.9.9, when file transfer is enabled to a location shared by multiple users, allows remote authenticated users to i…
|
CWE-79
Cross-site Scripting
|
CVE-2016-1566
|
2024-11-21 11:46 |
2017-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266242
|
8.8 |
HIGH
Network
|
snort
|
snort
|
Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse tcapi.dll that is located in the same…
|
CWE-426
Untrusted Search Path
|
CVE-2016-1417
|
2024-11-21 11:46 |
2017-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266243
|
7.8 |
HIGH
Local
|
idrix
|
truecrypt
veracrypt
|
Untrusted search path vulnerability in the installer for TrueCrypt 7.2 and 7.1a, VeraCrypt before 1.17-BETA, and possibly other products allows local users to execute arbitrary code with administrato…
|
CWE-426
Untrusted Search Path
|
CVE-2016-1281
|
2024-11-21 11:46 |
2017-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266244
|
3.7 |
LOW
Network
|
ntp
ntpsec
|
ntp
ntpsec
|
ntpd in NTP 4.2.8p3 and NTPsec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 relies on the underlying operating system to protect it from requests that impersonate reference clocks. Because reference cloc…
|
CWE-254
7PK - Security Features
|
CVE-2016-1551
|
2024-11-21 11:46 |
2017-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266245
|
5.3 |
MEDIUM
Network
|
ntp
|
ntp
|
An exploitable vulnerability exists in the message authentication functionality of libntp in ntp 4.2.8p4 and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92. An attacker can send a series of crafted …
|
CWE-200
Information Exposure
|
CVE-2016-1550
|
2024-11-21 11:46 |
2017-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266246
|
6.5 |
MEDIUM
Network
|
ntp
|
ntp
|
A malicious authenticated peer can create arbitrarily-many ephemeral associations in order to win the clock selection algorithm in ntpd in NTP 4.2.8p4 and earlier and NTPsec 3e160db8dc248a0bcb053b56a…
|
CWE-19
Data Processing Errors
|
CVE-2016-1549
|
2024-11-21 11:46 |
2017-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266247
|
7.2 |
HIGH
Network
|
ntp
|
ntp
|
An attacker can spoof a packet from a legitimate ntpd server with an origin timestamp that matches the peer->dst timestamp recorded for that server. After making this switch, the client in NTP 4.2.8p…
|
CWE-19
Data Processing Errors
|
CVE-2016-1548
|
2024-11-21 11:46 |
2017-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266248
|
5.3 |
MEDIUM
Network
|
ntp
|
ntp
|
An off-path attacker can cause a preemptible client association to be demobilized in NTP 4.2.8p4 and earlier and NTPSec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 by sending a crypto NAK packet to a vi…
|
CWE-20
Improper Input Validation
|
CVE-2016-1547
|
2024-11-21 11:46 |
2017-01-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266249
|
5.9 |
MEDIUM
Network
|
cisco
|
content_security_management_appliance
email_security_appliance
web_security_appliance
|
A vulnerability in the update functionality of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA), Cisco Web Security Appliance (WSA), and Cisco Content Management Security Appliance (SM…
|
CWE-310
Cryptographic Issues
|
CVE-2016-1411
|
2024-11-21 11:46 |
2016-12-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266250
|
8.1 |
HIGH
Network
|
dbd-mysql_project
|
dbd-mysql
|
There is a vulnerability of type use-after-free affecting DBD::mysql (aka DBD-mysql or the Database Interface (DBI) MySQL driver for Perl) 3.x and 4.x before 4.041 when used with mysql_server_prepare…
|
CWE-416
Use After Free
|
CVE-2016-1251
|
2024-11-21 11:46 |
2016-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
