|
258051
|
7.5 |
HIGH
Network
|
roundcube
|
webmail
|
steps/mail/sendmail.inc in Roundcube before 1.1.7 and 1.2.x before 1.2.3, when no SMTP server is configured and the sendmail program is enabled, does not properly restrict the use of custom envelope-…
|
CWE-284
Improper Access Control
|
CVE-2016-9920
|
2024-11-21 12:02 |
2016-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258052
|
7.5 |
HIGH
Network
|
linux
|
linux_kernel
|
The icmp6_send function in net/ipv6/icmp.c in the Linux kernel through 4.8.12 omits a certain check of the dst data structure, which allows remote attackers to cause a denial of service (panic) via a…
|
CWE-20
Improper Input Validation
|
CVE-2016-9919
|
2024-11-21 12:02 |
2016-12-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258053
|
7.5 |
HIGH
Network
|
bluez_project
|
bluez
|
In BlueZ 5.42, an out-of-bounds read was identified in "packet_hexdump" function in "monitor/packet.c" source file. This issue can be triggered by processing a corrupted dump file and will result in …
|
CWE-125
Out-of-bounds Read
|
CVE-2016-9918
|
2024-11-21 12:02 |
2016-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258054
|
7.5 |
HIGH
Network
|
bluez
|
bluez
|
In BlueZ 5.42, a buffer overflow was observed in "read_n" function in "tools/hcidump.c" source file. This issue can be triggered by processing a corrupted dump file and will result in hcidump crash.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9917
|
2024-11-21 12:02 |
2016-12-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258055
|
9.8 |
CRITICAL
Network
|
google
|
chrome
|
Multiple unspecified vulnerabilities in Google Chrome before 55.0.2883.75.
|
NVD-CWE-noinfo
|
CVE-2016-9652
|
2024-11-21 12:01 |
2019-11-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258056
|
5.9 |
MEDIUM
Network
|
isc
netapp
|
bind
data_ontap_edge
solidfire_element_os_management_node
|
An error in handling certain queries can cause an assertion failure when a server is using the nxdomain-redirect feature to cover a zone for which it is also providing authoritative service. A vulner…
|
CWE-388
7PK - Errors
|
CVE-2016-9778
|
2024-11-21 12:01 |
2019-01-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258057
|
8.8 |
HIGH
Network
|
google
redhat
|
chrome
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
|
A missing check for whether a property of a JS object is private in V8 in Google Chrome prior to 55.0.2883.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML p…
|
CWE-94
Code Injection
|
CVE-2016-9651
|
2024-11-21 12:01 |
2019-01-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258058
|
3.3 |
LOW
Local
|
ibm
|
campaign
|
IBM Campaign 9.1.0, 9.1.2, 10.0, and 10.1 could allow an authenticated user with access to the local network to bypass security due to lack of input validation. IBM X-Force ID: 120206.
|
CWE-20
Improper Input Validation
|
CVE-2016-9749
|
2024-11-21 12:01 |
2018-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258059
|
6.1 |
MEDIUM
Network
|
cobbler_project
|
cobbler
|
A flaw was found in cobbler software component version 2.6.11-1. It suffers from an invalid parameter validation vulnerability, leading the arbitrary file reading. The flaw is triggered by navigating…
|
CWE-79
Cross-site Scripting
|
CVE-2016-9605
|
2024-11-21 12:01 |
2018-08-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258060
|
6.5 |
MEDIUM
Network
|
redhat
xmlsoft
|
jboss_core_services
libxml2
|
libxml2, as used in Red Hat JBoss Core Services, allows context-dependent attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted XML document. NOTE: this vuln…
|
CWE-125
Out-of-bounds Read
|
CVE-2016-9598
|
2024-11-21 12:01 |
2018-08-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
