|
255091
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadPCXImage in coders/pcx.c, which allows attackers to cause a denial of service.
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2017-12432
|
2024-11-21 12:09 |
2017-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255092
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
In ImageMagick 7.0.6-1, a use-after-free vulnerability was found in the function ReadWMFImage in coders/wmf.c, which allows attackers to cause a denial of service.
|
CWE-416
Use After Free
|
CVE-2017-12431
|
2024-11-21 12:09 |
2017-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255093
|
7.5 |
HIGH
Network
|
imagemagick
|
imagemagick
|
In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadMPCImage in coders/mpc.c, which allows attackers to cause a denial of service.
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2017-12430
|
2024-11-21 12:09 |
2017-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255094
|
7.5 |
HIGH
Network
|
imagemagick
|
imagemagick
|
In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadMIFFImage in coders/miff.c, which allows attackers to cause a denial of service.
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2017-12429
|
2024-11-21 12:09 |
2017-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255095
|
7.5 |
HIGH
Network
|
imagemagick
|
imagemagick
|
In ImageMagick 7.0.6-1, a memory leak vulnerability was found in the function ReadWMFImage in coders/wmf.c, which allows attackers to cause a denial of service in CloneDrawInfo in draw.c.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-12428
|
2024-11-21 12:09 |
2017-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255096
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
The ProcessMSLScript function in coders/msl.c in ImageMagick before 6.9.9-5 and 7.x before 7.0.6-5 allows remote attackers to cause a denial of service (memory leak) via a crafted file, related to th…
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-12427
|
2024-11-21 12:09 |
2017-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255097
|
9.8 |
CRITICAL
Network
|
shadow_project
debian
|
shadow
debian_linux
|
In shadow before 4.5, the newusers tool could be made to manipulate internal data structures in ways unintended by the authors. Malformed input may lead to crashes (with a buffer overflow or other me…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-12424
|
2024-11-21 12:09 |
2017-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255098
|
7.5 |
HIGH
Network
|
imagemagick
|
imagemagick
|
ImageMagick 7.0.6-5 has memory leaks in the parse8BIMW and format8BIM functions in coders/meta.c, related to the WriteImage function in MagickCore/constitute.c.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-12418
|
2024-11-21 12:09 |
2017-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255099
|
9.8 |
CRITICAL
Network
|
pcfreetime
|
format_factory
|
Format Factory 4.1.0 has a DLL Hijacking Vulnerability because an untrusted search path is used for msimg32.dll, WindowsCodecs.dll, and dwmapi.dll.
|
CWE-426
Untrusted Search Path
|
CVE-2017-12414
|
2024-11-21 12:09 |
2017-08-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
255100
|
8.1 |
HIGH
Network
|
electron
|
electron
|
GitHub Electron before 1.6.8 allows remote command execution because of a nodeIntegration bypass vulnerability. This also affects all applications that bundle Electron code equivalent to 1.6.8 or ear…
|
CWE-78
OS Command
|
CVE-2017-12581
|
2024-11-21 12:09 |
2017-08-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
