|
258221
|
9.8 |
CRITICAL
Network
|
libdwarf_project
|
libdwarf
|
(1) libdwarf/dwarf_leb.c and (2) dwarfdump/print_frames.c in libdwarf before 20161124 allow remote attackers to have unspecified impact via a crafted bit pattern in a signed leb number, aka a "negati…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2016-9558
|
2024-11-21 12:01 |
2017-03-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258222
|
6.5 |
MEDIUM
Local
|
xen
|
xen
|
Xen through 4.7.x allows local ARM guest OS users to cause a denial of service (host crash) via vectors involving an asynchronous abort while at HYP.
|
CWE-284
Improper Access Control
|
CVE-2016-9818
|
2024-11-21 12:01 |
2017-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258223
|
6.5 |
MEDIUM
Local
|
xen
|
xen
|
Xen through 4.7.x allows local ARM guest OS users to cause a denial of service (host crash) via vectors involving a (1) data or (2) prefetch abort with the ESR_EL2.EA bit set.
|
CWE-284
Improper Access Control
|
CVE-2016-9817
|
2024-11-21 12:01 |
2017-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258224
|
6.5 |
MEDIUM
Local
|
xen
|
xen
|
Xen through 4.7.x allows local ARM guest OS users to cause a denial of service (host crash) via vectors involving an asynchronous abort while at EL2.
|
CWE-284
Improper Access Control
|
CVE-2016-9816
|
2024-11-21 12:01 |
2017-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258225
|
6.5 |
MEDIUM
Local
|
xen
|
xen
|
Xen through 4.7.x allows local ARM guest OS users to cause a denial of service (host panic) by sending an asynchronous abort.
|
CWE-284
Improper Access Control
|
CVE-2016-9815
|
2024-11-21 12:01 |
2017-02-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258226
|
6.1 |
MEDIUM
Network
|
html5lib
|
html5lib
|
The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting (XSS) attacks by leveraging mishandling of special characters in attribute values, a differen…
|
CWE-79
Cross-site Scripting
|
CVE-2016-9910
|
2024-11-21 12:01 |
2017-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258227
|
6.1 |
MEDIUM
Network
|
html5lib
|
html5lib
|
The serializer in html5lib before 0.99999999 might allow remote attackers to conduct cross-site scripting (XSS) attacks by leveraging mishandling of the < (less than) character in attribute values.
|
CWE-79
Cross-site Scripting
|
CVE-2016-9909
|
2024-11-21 12:01 |
2017-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258228
|
9.8 |
CRITICAL
Network
|
teeworlds
fedoraproject
|
teeworlds
fedora
|
The CClient::ProcessServerPacket method in engine/client/client.cpp in Teeworlds before 0.6.4 allows remote servers to write to arbitrary physical memory locations and possibly execute arbitrary code…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9400
|
2024-11-21 12:01 |
2017-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258229
|
6.5 |
MEDIUM
Local
|
xen
|
xen
|
Xen 4.7 allows local guest OS users to obtain sensitive host information by loading a 32-bit ELF symbol table.
|
CWE-200
Information Exposure
|
CVE-2016-9384
|
2024-11-21 12:01 |
2017-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258230
|
5.5 |
MEDIUM
Local
|
xen
|
xen
|
Xen 4.5.x through 4.7.x on AMD systems without the NRip feature, when emulating instructions that generate software interrupts, allows local HVM guest OS users to cause a denial of service (guest cra…
|
CWE-284
Improper Access Control
|
CVE-2016-9378
|
2024-11-21 12:01 |
2017-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
