|
256901
|
9.8 |
CRITICAL
Network
|
php
|
php
|
The php_wddx_push_element function in ext/wddx/wddx.c in PHP before 5.6.29 and 7.x before 7.0.14 allows remote attackers to cause a denial of service (out-of-bounds read and memory corruption) or pos…
|
CWE-125
Out-of-bounds Read
|
CVE-2016-9935
|
2024-11-21 12:02 |
2017-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256902
|
7.5 |
HIGH
Network
|
php
|
php
|
ext/wddx/wddx.c in PHP before 5.6.28 and 7.x before 7.0.13 allows remote attackers to cause a denial of service (NULL pointer dereference) via crafted serialized data in a wddxPacket XML document, as…
|
CWE-476
NULL Pointer Dereference
|
CVE-2016-9934
|
2024-11-21 12:02 |
2017-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256903
|
7.5 |
HIGH
Network
|
libgd
|
libgd
|
Stack consumption vulnerability in the gdImageFillToBorder function in gd.c in the GD Graphics Library (aka libgd) before 2.2.2, as used in PHP before 5.6.28 and 7.x before 7.0.13, allows remote atta…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9933
|
2024-11-21 12:02 |
2017-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256904
|
9.8 |
CRITICAL
Network
|
libvncserver_project
|
libvncserver
|
Heap-based buffer overflow in ultra.c in LibVNCClient in LibVNCServer before 0.9.11 allows remote servers to cause a denial of service (application crash) or possibly execute arbitrary code via a cra…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9942
|
2024-11-21 12:02 |
2017-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256905
|
9.8 |
CRITICAL
Network
|
libvncserver_project
|
libvncserver
|
Heap-based buffer overflow in rfbproto.c in LibVNCClient in LibVNCServer before 0.9.11 allows remote servers to cause a denial of service (application crash) or possibly execute arbitrary code via a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9941
|
2024-11-21 12:02 |
2017-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256906
|
6.5 |
MEDIUM
Local
|
qemu
debian
|
qemu
debian_linux
|
Memory leak in hw/9pfs/9p-proxy.c in QEMU (aka Quick Emulator) allows local privileged guest OS users to cause a denial of service (host memory consumption and possibly QEMU process crash) by leverag…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2016-9916
|
2024-11-21 12:02 |
2016-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256907
|
6.5 |
MEDIUM
Local
|
qemu
debian
|
qemu
debian_linux
|
Memory leak in hw/9pfs/9p-handle.c in QEMU (aka Quick Emulator) allows local privileged guest OS users to cause a denial of service (host memory consumption and possibly QEMU process crash) by levera…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2016-9915
|
2024-11-21 12:02 |
2016-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256908
|
6.5 |
MEDIUM
Local
|
qemu
debian
|
qemu
debian_linux
|
Memory leak in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local privileged guest OS users to cause a denial of service (host memory consumption and possibly QEMU process crash) by leveraging a …
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2016-9914
|
2024-11-21 12:02 |
2016-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256909
|
6.5 |
MEDIUM
Local
|
qemu
|
qemu
|
Memory leak in the v9fs_device_unrealize_common function in hw/9pfs/9p.c in QEMU (aka Quick Emulator) allows local privileged guest OS users to cause a denial of service (host memory consumption and …
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2016-9913
|
2024-11-21 12:02 |
2016-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
256910
|
5.5 |
MEDIUM
Local
|
qemu
|
qemu
|
Quick Emulator (Qemu) built with the 'chardev' backend support is vulnerable to a use after free issue. It could occur while hotplug and unplugging the device in the guest. A guest user/process could…
|
CWE-416
Use After Free
|
CVE-2016-9923
|
2024-11-21 12:02 |
2016-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
