|
257301
|
5.3 |
MEDIUM
Network
|
bluez
|
bluez
|
In BlueZ 5.42, a buffer overflow was observed in "pklg_read_hci" function in "btsnoop.c" source file. This issue can be triggered by processing a corrupted dump file and will result in btmon crash.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9799
|
2024-11-21 12:01 |
2016-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257302
|
5.3 |
MEDIUM
Network
|
bluez
|
bluez
|
In BlueZ 5.42, a use-after-free was identified in "conf_opt" function in "tools/parser/l2cap.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump…
|
CWE-416
Use After Free
|
CVE-2016-9798
|
2024-11-21 12:01 |
2016-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257303
|
5.3 |
MEDIUM
Network
|
bluez
|
bluez
|
In BlueZ 5.42, a buffer over-read was observed in "l2cap_dump" function in "tools/parser/l2cap.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidu…
|
CWE-119
CWE-125
Incorrect Access of Indexable Resource ('Range Error')
Out-of-bounds Read
|
CVE-2016-9797
|
2024-11-21 12:01 |
2016-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257304
|
7.8 |
HIGH
Local
|
bmc
|
patrol
|
In BMC Patrol before 9.13.10.02, the binary "listguests64" is configured with the setuid bit. However, when executing it, it will look for a binary named "virsh" using the PATH environment variable. …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-9638
|
2024-11-21 12:01 |
2016-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257305
|
9.8 |
CRITICAL
Network
|
alcatel-lucent
|
omnivista_8770_network_management_system
|
Alcatel-Lucent OmniVista 8770 2.0 through 3.0 exposes different ORBs interfaces, which can be queried using the GIOP protocol on TCP port 30024. An attacker can bypass authentication, and OmniVista i…
|
CWE-287
CWE-264
Improper Authentication
Permissions, Privileges, and Access Controls
|
CVE-2016-9796
|
2024-11-21 12:01 |
2016-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257306
|
7.5 |
HIGH
Network
|
b2evolution
|
b2evolution
|
The "lost password" functionality in b2evolution before 6.7.9 allows remote attackers to reset arbitrary user passwords via a crafted request.
|
CWE-255
Credentials Management
|
CVE-2016-9479
|
2024-11-21 12:01 |
2016-12-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257307
|
8.6 |
HIGH
Network
|
s9y
|
serendipity
|
In Serendipity before 2.0.5, an attacker can bypass SSRF protection by using a malformed IP address (e.g., http://127.1) or a 30x (aka Redirection) HTTP status code.
|
CWE-918
Server-Side Request Forgery (SSRF)
|
CVE-2016-9752
|
2024-11-21 12:01 |
2016-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257308
|
6.1 |
MEDIUM
Network
|
piwigo
|
piwigo
|
Cross-site scripting (XSS) vulnerability in the search results front end in Piwigo 2.8.3 allows remote attackers to inject arbitrary web script or HTML via the search parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2016-9751
|
2024-11-21 12:01 |
2016-12-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257309
|
7.5 |
HIGH
Network
|
boa
|
boa
|
Buffer overflow in send_redirect() in Boa Webserver 0.92r allows remote attackers to DoS via an HTTP GET request requesting a long URI with only '/' and '.' characters.
|
CWE-20
Improper Input Validation
|
CVE-2016-9564
|
2024-11-21 12:01 |
2016-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257310
|
9.8 |
CRITICAL
Network
|
exponentcms
|
exponent_cms
|
In framework/modules/core/controllers/expCommentController.php of Exponent CMS 2.4.0, content_id input is passed into showComments. The method showComments is defined in the expCommentControllercontr…
|
CWE-89
SQL Injection
|
CVE-2016-9481
|
2024-11-21 12:01 |
2016-11-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
