|
249151
|
9.8 |
CRITICAL
Network
|
feh_project
|
feh
|
In wallpaper.c in feh before v2.18.3, if a malicious client pretends to be the E17 window manager, it is possible to trigger an out-of-boundary heap write while receiving an IPC message. An integer o…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-7875
|
2024-11-21 12:32 |
2017-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249152
|
6.1 |
MEDIUM
Network
|
tdm_project
|
tdm
|
trollepierre/tdm before 2017-04-13 is vulnerable to a reflected XSS in tdm-master/webhook.php (challenge parameter).
|
CWE-79
Cross-site Scripting
|
CVE-2017-7871
|
2024-11-21 12:32 |
2017-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249153
|
8.8 |
HIGH
Network
|
sap
|
netweaver_application_server_java
|
SQL injection vulnerability in the getUserUddiElements method in the ES UDDI component in SAP NetWeaver AS Java 7.4 allows remote authenticated users to execute arbitrary SQL commands via unspecified…
|
CWE-89
SQL Injection
|
CVE-2017-7717
|
2024-11-21 12:32 |
2017-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249154
|
7.5 |
HIGH
Network
|
sap
|
sso_authentication_library
|
SAP AS JAVA SSO Authentication Library 2.0 through 3.0 allow remote attackers to cause a denial of service (memory consumption) via large values in the width and height parameters to otp_logon_ui_res…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2017-7696
|
2024-11-21 12:32 |
2017-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249155
|
7.8 |
HIGH
Local
|
proxifier
|
proxifier
|
Proxifier for Mac before 2.19.2, when first run, allows local users to gain privileges by replacing the KLoader binary with a Trojan horse program.
|
CWE-78
OS Command
|
CVE-2017-7690
|
2024-11-21 12:32 |
2017-04-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249156
|
7.8 |
HIGH
Local
|
proxifier
|
proxifier
|
Proxifier for Mac before 2.19 allows local users to gain privileges via the first parameter to the KLoader setuid program.
|
NVD-CWE-noinfo
|
CVE-2017-7643
|
2024-11-21 12:32 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249157
|
9.8 |
CRITICAL
Network
|
libreoffice
|
libreoffice
|
LibreOffice before 2017-01-02 has an out-of-bounds write caused by a heap-based buffer overflow related to the tools::Polygon::Insert function in tools/source/generic/poly.cxx.
|
CWE-787
Out-of-bounds Write
|
CVE-2017-7870
|
2024-11-21 12:32 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249158
|
7.5 |
HIGH
Network
|
gnu
|
gnutls
|
GnuTLS before 2017-02-20 has an out-of-bounds write caused by an integer overflow and heap-based buffer overflow related to the cdk_pkt_read function in opencdk/read-packet.c. This issue (which is a …
|
CWE-787
Out-of-bounds Write
|
CVE-2017-7869
|
2024-11-21 12:32 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249159
|
7.5 |
HIGH
Network
|
icu-project
debian
|
international_components_for_unicode
debian_linux
|
International Components for Unicode (ICU) for C/C++ before 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-7868
|
2024-11-21 12:32 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249160
|
7.5 |
HIGH
Network
|
icu-project
debian
|
international_components_for_unicode
debian_linux
|
International Components for Unicode (ICU) for C/C++ before 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-7867
|
2024-11-21 12:32 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
