|
265411
|
9.8 |
CRITICAL
Network
|
php
|
php
|
Integer overflow in the php_filter_encode_url function in ext/filter/sanitizing_filters.c in PHP before 7.0.4 allows remote attackers to cause a denial of service or possibly have unspecified other i…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2016-4345
|
2024-11-21 11:51 |
2016-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265412
|
9.8 |
CRITICAL
Network
|
php
|
php
|
Integer overflow in the xml_utf8_encode function in ext/xml/xml.c in PHP before 7.0.4 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a long argumen…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2016-4344
|
2024-11-21 11:51 |
2016-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265413
|
8.8 |
HIGH
Network
|
php
opensuse
|
php
opensuse
|
The phar_make_dirstream function in ext/phar/dirstream.c in PHP before 5.6.18 and 7.x before 7.0.3 mishandles zero-size ././@LongLink files, which allows remote attackers to cause a denial of service…
|
CWE-824
Access of Uninitialized Pointer
|
CVE-2016-4343
|
2024-11-21 11:51 |
2016-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265414
|
8.8 |
HIGH
Network
|
opensuse
php
|
leap
php
|
ext/phar/phar_object.c in PHP before 5.5.32, 5.6.x before 5.6.18, and 7.x before 7.0.3 mishandles zero-length uncompressed data, which allows remote attackers to cause a denial of service (heap memor…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-4342
|
2024-11-21 11:51 |
2016-05-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265415
|
7.5 |
HIGH
Network
|
gnome
debian
opensuse
|
librsvg
debian_linux
leap
opensuse
|
The _rsvg_css_normalize_font_size function in librsvg 2.40.2 allows context-dependent attackers to cause a denial of service (stack consumption and application crash) via circular definitions in an S…
|
CWE-20
Improper Input Validation
|
CVE-2016-4348
|
2024-11-21 11:51 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265416
|
9.8 |
CRITICAL
Network
|
php
apple
|
php
mac_os_x
|
Multiple integer overflows in the mbfl_strcut function in ext/mbstring/libmbfl/mbfl/mbfilter.c in PHP before 5.5.34, 5.6.x before 5.6.20, and 7.x before 7.0.5 allow remote attackers to cause a denial…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-4073
|
2024-11-21 11:51 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265417
|
9.8 |
CRITICAL
Network
|
php
apple
|
php
mac_os_x
|
The Phar extension in PHP before 5.5.34, 5.6.x before 5.6.20, and 7.x before 7.0.5 allows remote attackers to execute arbitrary code via a crafted filename, as demonstrated by mishandling of \0 chara…
|
CWE-20
Improper Input Validation
|
CVE-2016-4072
|
2024-11-21 11:51 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265418
|
9.8 |
CRITICAL
Network
|
php
apple
|
php
mac_os_x
|
Format string vulnerability in the php_snmp_error function in ext/snmp/snmp.c in PHP before 5.5.34, 5.6.x before 5.6.20, and 7.x before 7.0.5 allows remote attackers to execute arbitrary code via for…
|
CWE-20
Improper Input Validation
|
CVE-2016-4071
|
2024-11-21 11:51 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265419
|
7.5 |
HIGH
Network
|
php
|
php
|
Integer overflow in the php_raw_url_encode function in ext/standard/url.c in PHP before 5.5.34, 5.6.x before 5.6.20, and 7.x before 7.0.5 allows remote attackers to cause a denial of service (applica…
|
CWE-189
Numeric Errors
|
CVE-2016-4070
|
2024-11-21 11:51 |
2016-05-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265420
|
9.8 |
CRITICAL
Network
|
lantronix
|
xprintserver_firmware
|
Lantronix xPrintServer devices with firmware before 5.0.1-65 have hardcoded credentials, which allows remote attackers to obtain root access via unspecified vectors.
|
CWE-255
NVD-CWE-Other
Credentials Management
|
CVE-2016-4325
|
2024-11-21 11:51 |
2016-05-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
