|
264601
|
9.8 |
CRITICAL
Network
|
botan_project
|
botan
|
In Botan 1.8.0 through 1.11.33, when decoding BER data an integer overflow could occur, which would cause an incorrect length field to be computed. Some API callers may use the returned (incorrect an…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2016-9132
|
2024-11-21 12:00 |
2017-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264602
|
6.1 |
MEDIUM
Network
|
moinmo
canonical
debian
|
moinmoin
ubuntu_linux
debian_linux
|
Cross-site scripting (XSS) vulnerability in the link dialogue in GUI editor in MoinMoin before 1.9.8 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
|
CWE-79
Cross-site Scripting
|
CVE-2016-9119
|
2024-11-21 12:00 |
2017-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264603
|
5.5 |
MEDIUM
Local
|
imagemagick
|
imagemagick
|
Heap overflow in the WaveletDenoiseImage function in MagickCore/fx.c in ImageMagick before 6.9.6-4 and 7.x before 7.0.3-6 allows remote attackers to cause a denial of service (crash) via a crafted im…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9298
|
2024-11-21 12:00 |
2017-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264604
|
9.8 |
CRITICAL
Network
|
aerospike
|
database_server
|
An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause a stack-based buffer overflow…
|
CWE-787
Out-of-bounds Write
|
CVE-2016-9054
|
2024-11-21 12:00 |
2017-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264605
|
9.8 |
CRITICAL
Network
|
aerospike
|
database_server
|
An exploitable stack-based buffer overflow vulnerability exists in the querying functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause a stack-based buffer overflow…
|
CWE-787
Out-of-bounds Write
|
CVE-2016-9052
|
2024-11-21 12:00 |
2017-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264606
|
8.2 |
HIGH
Network
|
aerospike
|
database_server
|
An exploitable out-of-bounds read vulnerability exists in the client message-parsing functionality of Aerospike Database Server 3.10.0.3. A specially crafted packet can cause an out-of-bounds read re…
|
CWE-125
Out-of-bounds Read
|
CVE-2016-9050
|
2024-11-21 12:00 |
2017-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264607
|
5.5 |
MEDIUM
Local
|
libgd
|
libgd
|
The gdImageCreate function in the GD Graphics Library (aka libgd) before 2.2.4 allows remote attackers to cause a denial of service (system hang) via an oversized image.
|
CWE-20
Improper Input Validation
|
CVE-2016-9317
|
2024-11-21 12:00 |
2017-01-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264608
|
6.1 |
MEDIUM
Network
|
cisco
|
netflow_generation_appliance
|
A vulnerability in the web-based management interface of Cisco NetFlow Generation Appliance could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a us…
|
CWE-79
Cross-site Scripting
|
CVE-2016-9222
|
2024-11-21 12:00 |
2017-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264609
|
4.3 |
MEDIUM
Adjacent
|
cisco
|
aironet_access_point_software
|
A Denial of Service Vulnerability in 802.11 ingress packet processing of the Cisco Mobility Express 2800 and 3800 Access Points (APs) could allow an unauthenticated, adjacent attacker to cause the co…
|
CWE-399
Resource Management Errors
|
CVE-2016-9220
|
2024-11-21 12:00 |
2017-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264610
|
8.8 |
HIGH
Network
|
cisco
|
hybrid_meeting_server
|
A vulnerability in Cisco Hybrid Meeting Server could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack against the user of the web interface. More Inform…
|
CWE-352
Origin Validation Error
|
CVE-2016-9218
|
2024-11-21 12:00 |
2017-01-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
