|
252401
|
7.8 |
HIGH
Local
|
razer
|
synapse
|
rzpnk.sys in Razer Synapse 2.20.15.1104 allows local users to read and write to arbitrary memory locations, and consequently gain privileges, via a methodology involving a handle to \Device\PhysicalM…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14398
|
2024-11-21 12:12 |
2017-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252402
|
7.8 |
HIGH
Local
|
mp3gain
|
mp3gain
|
An invalid memory write was discovered in copy_mp in interface.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes a denial of service (segmentation fault and application crash…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-14412
|
2024-11-21 12:12 |
2017-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252403
|
7.8 |
HIGH
Local
|
mp3gain
|
mp3gain
|
A stack-based buffer overflow was discovered in copy_mp in interface.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an out-of-bounds write, which leads to remote denial of…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-14411
|
2024-11-21 12:12 |
2017-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252404
|
5.5 |
MEDIUM
Local
|
mp3gain
|
mp3gain
|
A buffer over-read was discovered in III_i_stereo in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an application crash, which leads to remote denial of service.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-14410
|
2024-11-21 12:12 |
2017-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252405
|
7.8 |
HIGH
Local
|
mp3gain
|
mp3gain
|
A buffer overflow was discovered in III_dequantize_sample in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an out-of-bounds write, which leads to remote denial of …
|
CWE-787
Out-of-bounds Write
|
CVE-2017-14409
|
2024-11-21 12:12 |
2017-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252406
|
5.5 |
MEDIUM
Local
|
mp3gain
|
mp3gain
|
A stack-based buffer over-read was discovered in dct36 in layer3.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes an application crash, which leads to remote denial of servi…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-14408
|
2024-11-21 12:12 |
2017-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252407
|
5.5 |
MEDIUM
Local
|
mp3gain
|
mp3gain
|
A stack-based buffer over-read was discovered in filterYule in gain_analysis.c in MP3Gain version 1.5.2. The vulnerability causes an application crash, which leads to remote denial of service.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-14407
|
2024-11-21 12:12 |
2017-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252408
|
5.5 |
MEDIUM
Local
|
mp3gain
|
mp3gain
|
A NULL pointer dereference was discovered in sync_buffer in interface.c in mpglibDBL, as used in MP3Gain version 1.5.2. The vulnerability causes a segmentation fault and application crash, which lead…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-14406
|
2024-11-21 12:12 |
2017-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252409
|
7.2 |
HIGH
Network
|
eyesofnetwork
|
eyesofnetwork
|
The EyesOfNetwork web interface (aka eonweb) 5.1-0 allows remote command execution via shell metacharacters in a hosts_cacti array parameter to module/admin_device/index.php.
|
CWE-78
OS Command
|
CVE-2017-14405
|
2024-11-21 12:12 |
2017-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
252410
|
7.5 |
HIGH
Network
|
eyesofnetwork
|
eyesofnetwork
|
The EyesOfNetwork web interface (aka eonweb) 5.1-0 allows local file inclusion via the tool_list parameter (aka the url_tool variable) to module/tool_all/select_tool.php, as demonstrated by a tool_li…
|
CWE-200
Information Exposure
|
CVE-2017-14404
|
2024-11-21 12:12 |
2017-09-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
