|
258101
|
9.8 |
CRITICAL
Network
|
libtiff
|
libtiff
|
tif_pixarlog.c in libtiff 4.0.6 has out-of-bounds write vulnerabilities in heap allocated buffers. Reported as MSVR 35094, aka "PixarLog horizontalDifference heap-buffer-overflow."
|
CWE-119
CWE-787
Incorrect Access of Indexable Resource ('Range Error')
Out-of-bounds Write
|
CVE-2016-9533
|
2024-11-21 12:01 |
2016-11-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258102
|
5.9 |
MEDIUM
Network
|
wireshark
debian
|
wireshark
debian_linux
|
In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the OpenFlow dissector could crash with memory exhaustion, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet…
|
CWE-399
Resource Management Errors
|
CVE-2016-9376
|
2024-11-21 12:01 |
2016-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258103
|
5.9 |
MEDIUM
Network
|
wireshark
debian
|
wireshark
debian_linux
|
In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the DTN dissector could go into an infinite loop, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-dtn.c by…
|
CWE-20
CWE-399
Improper Input Validation
Resource Management Errors
|
CVE-2016-9375
|
2024-11-21 12:01 |
2016-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258104
|
5.9 |
MEDIUM
Network
|
wireshark
debian
|
wireshark
debian_linux
|
In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the AllJoyn dissector could crash with a buffer over-read, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet…
|
CWE-119
CWE-399
Incorrect Access of Indexable Resource ('Range Error')
Resource Management Errors
|
CVE-2016-9374
|
2024-11-21 12:01 |
2016-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258105
|
5.9 |
MEDIUM
Network
|
wireshark
debian
|
wireshark
debian_linux
|
In Wireshark 2.2.0 to 2.2.1 and 2.0.0 to 2.0.7, the DCERPC dissector could crash with a use-after-free, triggered by network traffic or a capture file. This was addressed in epan/dissectors/packet-dc…
|
CWE-416
Use After Free
|
CVE-2016-9373
|
2024-11-21 12:01 |
2016-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258106
|
5.9 |
MEDIUM
Network
|
wireshark
|
wireshark
|
In Wireshark 2.2.0 to 2.2.1, the Profinet I/O dissector could loop excessively, triggered by network traffic or a capture file. This was addressed in plugins/profinet/packet-pn-rtc-one.c by rejecting…
|
CWE-20
CWE-399
Improper Input Validation
Resource Management Errors
|
CVE-2016-9372
|
2024-11-21 12:01 |
2016-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258107
|
9.8 |
CRITICAL
Network
|
exponentcms
|
exponent_cms
|
Exponent CMS before 2.6.0 has improper input validation in fileController.php.
|
CWE-20
Improper Input Validation
|
CVE-2016-9026
|
2024-11-21 12:00 |
2020-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258108
|
9.8 |
CRITICAL
Network
|
exponentcms
|
exponent_cms
|
Exponent CMS before 2.6.0 has improper input validation in purchaseOrderController.php.
|
CWE-20
Improper Input Validation
|
CVE-2016-9025
|
2024-11-21 12:00 |
2020-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258109
|
9.8 |
CRITICAL
Network
|
exponentcms
|
exponent_cms
|
Exponent CMS before 2.6.0 has improper input validation in cron/find_help.php.
|
CWE-20
Improper Input Validation
|
CVE-2016-9023
|
2024-11-21 12:00 |
2020-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258110
|
9.8 |
CRITICAL
Network
|
exponentcms
|
exponent_cms
|
Exponent CMS before 2.6.0 has improper input validation in usersController.php.
|
CWE-20
Improper Input Validation
|
CVE-2016-9022
|
2024-11-21 12:00 |
2020-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
