|
255511
|
7.5 |
HIGH
Network
|
swftools
|
swftools
|
When SWFTools 0.9.2 processes a crafted file in ttftool, it can lead to a heap-based buffer over-read in the readBlock() function in lib/ttf.c.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-10976
|
2024-11-21 12:06 |
2017-07-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255512
|
6.1 |
MEDIUM
Network
|
lutim_project
|
lutim
|
Cross-site scripting (XSS) vulnerability in Lutim before 0.8 might allow remote attackers to inject arbitrary web script or HTML via a crafted filename that is mishandled in an upload notification an…
|
CWE-79
Cross-site Scripting
|
CVE-2017-10975
|
2024-11-21 12:06 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255513
|
6.5 |
MEDIUM
Network
|
x.org
|
xorg-server
|
Uninitialized data in endianness conversion in the XEvent handling of the X.Org X Server before 2017-06-19 allowed authenticated malicious users to access potentially privileged data from the X serve…
|
CWE-665
Improper Initialization
|
CVE-2017-10972
|
2024-11-21 12:06 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255514
|
8.8 |
HIGH
Network
|
x.org
|
xorg-server
|
In the X.Org X server before 2017-06-19, a user authenticated to an X Session could crash or execute code in the context of the X Server by exploiting a stack overflow in the endianness conversion of…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-10971
|
2024-11-21 12:06 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255515
|
5.4 |
MEDIUM
Network
|
cacti
|
cacti
|
Cross-site scripting (XSS) vulnerability in link.php in Cacti 1.1.12 allows remote anonymous users to inject arbitrary web script or HTML via the id parameter, related to the die_html_input_error fun…
|
CWE-79
Cross-site Scripting
|
CVE-2017-10970
|
2024-11-21 12:06 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255516
|
7.8 |
HIGH
Local
|
irfanview
|
irfanview
fpx
|
IrfanView 4.44 (32bit) with FPX Plugin 4.47 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .fpx file, related to a "Read Access Violation s…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-10926
|
2024-11-21 12:06 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255517
|
7.8 |
HIGH
Local
|
irfanview
|
irfanview
fpx
|
IrfanView 4.44 (32bit) with FPX Plugin 4.47 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .fpx file, related to "Data from Faulting Addres…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-10925
|
2024-11-21 12:06 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255518
|
7.8 |
HIGH
Local
|
irfanview
|
irfanview
fpx
|
IrfanView 4.44 (32bit) with FPX Plugin 4.47 allows attackers to execute arbitrary code or cause a denial of service via a crafted .fpx file, related to a "User Mode Write AV starting at FPX!FPX_GetSc…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-10924
|
2024-11-21 12:06 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255519
|
7.8 |
HIGH
Local
|
xnview
|
xnview
|
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-10783
|
2024-11-21 12:06 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255520
|
7.8 |
HIGH
Local
|
xnview
|
xnview
|
XnView Classic for Windows Version 2.40 might allow attackers to cause a denial of service or possibly have unspecified other impact via a crafted .rle file, related to "Data from Faulting Address co…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-10782
|
2024-11-21 12:06 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
