|
258801
|
9.8 |
CRITICAL
Network
|
xar_project
|
xar
|
libxar.so in xar 1.6.1 has a NULL pointer dereference in the xar_unserialize function in archive.c.
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-11124
|
2024-11-21 12:07 |
2017-07-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258802
|
7.5 |
HIGH
Network
|
gnu
|
ncurses
|
In ncurses 6.0, there is a NULL Pointer Dereference in the _nc_parse_entry function of tinfo/parse_entry.c. It could lead to a remote denial of service attack if the terminfo library code is used to …
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-11113
|
2024-11-21 12:07 |
2017-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258803
|
7.5 |
HIGH
Network
|
gnu
|
ncurses
|
In ncurses 6.0, there is an attempted 0xffffffffffffffff access in the append_acs function of tinfo/parse_entry.c. It could lead to a remote denial of service attack if the terminfo library code is u…
|
CWE-20
Improper Input Validation
|
CVE-2017-11112
|
2024-11-21 12:07 |
2017-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258804
|
7.8 |
HIGH
Local
|
nasm
canonical
|
netwide_assembler
ubuntu_linux
|
In Netwide Assembler (NASM) 2.14rc0, preproc.c allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-11111
|
2024-11-21 12:07 |
2017-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258805
|
7.8 |
HIGH
Local
|
fossies
|
catdoc
|
The ole_init function in ole.c in catdoc 0.95 allows remote attackers to cause a denial of service (heap-based buffer underflow and application crash) or possibly have unspecified other impact via a …
|
CWE-787
Out-of-bounds Write
|
CVE-2017-11110
|
2024-11-21 12:07 |
2017-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258806
|
7.8 |
HIGH
Local
|
vim
|
vim
|
Vim 8.0 allows attackers to cause a denial of service (invalid free) or possibly have unspecified other impact via a crafted source (aka -S) file. NOTE: there might be a limited number of scenarios i…
|
CWE-416
Use After Free
|
CVE-2017-11109
|
2024-11-21 12:07 |
2017-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258807
|
7.5 |
HIGH
Network
|
tcpdump
|
tcpdump
|
tcpdump 4.9.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via crafted packet data. The crash occurs in the EXTRACT_16BITS function, called…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11108
|
2024-11-21 12:07 |
2017-07-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258808
|
6.1 |
MEDIUM
Network
|
phpldapadmin_project
debian
|
phpldapadmin
debian_linux
|
phpLDAPadmin through 1.2.3 has XSS in htdocs/entry_chooser.php via the form, element, rdn, or container parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2017-11107
|
2024-11-21 12:07 |
2017-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258809
|
5.9 |
MEDIUM
Network
|
knot-dns
debian
|
knot_dns
debian_linux
|
Knot DNS before 2.4.5 and 2.5.x before 2.5.2 contains a flaw within the TSIG protocol implementation that would allow an attacker with a valid key name and algorithm to bypass TSIG authentication if …
|
CWE-20
Improper Input Validation
|
CVE-2017-11104
|
2024-11-21 12:07 |
2017-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258810
|
7.5 |
HIGH
Network
|
graphicsmagick
|
graphicsmagick
|
The ReadOneJNGImage function in coders/png.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (application crash) during JNG reading via a zero-length color_image data st…
|
CWE-20
Improper Input Validation
|
CVE-2017-11102
|
2024-11-21 12:07 |
2017-07-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
