|
247621
|
7.1 |
HIGH
Local
|
gnome
fedoraproject
debian
|
gdk-pixbuf
fedora
debian_linux
|
Integer underflow in the load_resources function in io-icns.c in gdk-pixbuf allows context-dependent attackers to cause a denial of service (out-of-bounds read and program crash) via a crafted image …
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2017-6313
|
2024-11-21 12:29 |
2017-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247622
|
5.5 |
MEDIUM
Local
|
gnome
fedoraproject
debian
|
gdk-pixbuf
fedora
debian_linux
|
Integer overflow in io-ico.c in gdk-pixbuf allows context-dependent attackers to cause a denial of service (segmentation fault and application crash) via a crafted image entry offset in an ICO file, …
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-6312
|
2024-11-21 12:29 |
2017-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247623
|
7.5 |
HIGH
Network
|
gnome
fedoraproject
|
gdk-pixbuf
fedora
|
gdk-pixbuf-thumbnailer.c in gdk-pixbuf allows context-dependent attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors related to printing an error messag…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-6311
|
2024-11-21 12:29 |
2017-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247624
|
9.8 |
CRITICAL
Network
|
ftpshell
|
ftpshell_client
|
Remote Code Execution was discovered in FTPShell Client 6.53. By default, the client sends a PWD command to the FTP server it is connecting to; however, it doesn't check the response's length, leadin…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-6465
|
2024-11-21 12:29 |
2017-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247625
|
8.8 |
HIGH
Network
|
dnatools
|
dnalims
|
An issue was discovered in dnaTools dnaLIMS 4-2015s13. dnaLIMS is vulnerable to session hijacking by guessing the UID parameter.
|
CWE-613
Insufficient Session Expiration
|
CVE-2017-6529
|
2024-11-21 12:29 |
2017-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247626
|
8.1 |
HIGH
Network
|
dnatools
|
dnalims
|
An issue was discovered in dnaTools dnaLIMS 4-2015s13. dnaLIMS is affected by plaintext password storage (the /home/dna/spool/.pfile file).
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2017-6528
|
2024-11-21 12:29 |
2017-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247627
|
7.5 |
HIGH
Network
|
dnatools
|
dnalims
|
An issue was discovered in dnaTools dnaLIMS 4-2015s13. dnaLIMS is vulnerable to a NUL-terminated directory traversal attack allowing an unauthenticated attacker to access system files readable by the…
|
CWE-22
Path Traversal
|
CVE-2017-6527
|
2024-11-21 12:29 |
2017-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247628
|
9.8 |
CRITICAL
Network
|
dnatools
|
dnalims
|
An issue was discovered in dnaTools dnaLIMS 4-2015s13. dnaLIMS is vulnerable to unauthenticated command execution through an improperly protected administrative web shell (cgi-bin/dna/sysAdmin.cgi PO…
|
CWE-287
Improper Authentication
|
CVE-2017-6526
|
2024-11-21 12:29 |
2017-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247629
|
8.1 |
HIGH
Network
|
dahuasecurity
|
nvr_firmware
|
An issue was discovered on Dahua DHI-HCVR7216A-S3 3.210.0001.10 build 2016-06-06 devices. The Dahua DVR Protocol, which operates on TCP Port 37777, is an unencrypted, binary protocol. Performing a Ma…
|
CWE-319
Cleartext Transmission of Sensitive Information
|
CVE-2017-6432
|
2024-11-21 12:29 |
2017-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247630
|
6.1 |
MEDIUM
Network
|
asus
|
rt-ac53_firmware
|
Cross-site scripting (XSS) vulnerability in httpd on ASUS RT-N56U, RT-N66U, RT-AC66U, RT-N66R, RT-AC66R, RT-AC68U, RT-AC68R, RT-N66W, RT-AC66W, RT-AC87R, RT-AC87U, RT-AC51U, RT-AC68P, RT-N11P, RT-N12…
|
CWE-79
Cross-site Scripting
|
CVE-2017-6547
|
2024-11-21 12:29 |
2017-03-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
