|
247961
|
7.5 |
HIGH
Network
|
gnu
|
osip
|
In libosip2 in GNU oSIP 4.1.0 and 5.0.0, a malformed SIP message can lead to a heap buffer overflow in the msg_osip_body_parse() function defined in osipparser2/osip_message_parse.c, resulting in a r…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-7853
|
2024-11-21 12:32 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247962
|
9.8 |
CRITICAL
Network
|
smart_related_articles_project
|
smart_related_articles
|
The "Smart related articles" extension 1.1 for Joomla! has SQL injection in dialog.php (attacker must use search_cats variable in POST method to exploit this vulnerability).
|
CWE-89
SQL Injection
|
CVE-2017-7628
|
2024-11-21 12:32 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247963
|
5.3 |
MEDIUM
Network
|
smart_related_articles_project
|
smart_related_articles
|
The "Smart related articles" extension 1.1 for Joomla! does not prevent direct requests to dialog.php (there is a missing _JEXEC check).
|
NVD-CWE-noinfo
|
CVE-2017-7627
|
2024-11-21 12:32 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247964
|
6.1 |
MEDIUM
Network
|
smart_related_articles_project
|
smart_related_articles
|
The "Smart related articles" extension 1.1 for Joomla! has XSS in dialog.php (n_art,type in GET Method).
|
CWE-79
Cross-site Scripting
|
CVE-2017-7626
|
2024-11-21 12:32 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247965
|
7.5 |
HIGH
Network
|
wireshark
|
wireshark
|
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the WSP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/pac…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2017-7748
|
2024-11-21 12:32 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247966
|
7.5 |
HIGH
Network
|
wireshark
debian
|
wireshark
debian_linux
|
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the PacketBB dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-packetbb.c…
|
CWE-20
Improper Input Validation
|
CVE-2017-7747
|
2024-11-21 12:32 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247967
|
7.5 |
HIGH
Network
|
wireshark
debian
|
wireshark
debian_linux
|
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the SLSK dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/pa…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2017-7746
|
2024-11-21 12:32 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247968
|
7.5 |
HIGH
Network
|
wireshark
|
wireshark
|
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the SIGCOMP dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2017-7745
|
2024-11-21 12:32 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247969
|
7.5 |
HIGH
Network
|
wireshark
|
wireshark
|
In Wireshark 2.2.0 to 2.2.5 and 2.0.0 to 2.0.11, the RPC over RDMA dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/diss…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2017-7705
|
2024-11-21 12:32 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247970
|
7.5 |
HIGH
Network
|
wireshark
|
wireshark
|
In Wireshark 2.2.0 to 2.2.5, the DOF dissector could go into an infinite loop, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-dof.c by using a…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2017-7704
|
2024-11-21 12:32 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
