|
248531
|
9.8 |
CRITICAL
Network
|
mor-pah.net
|
dmitry_deepmagic_information_gathering_tool
|
Stack-based buffer overflow in DMitry (Deepmagic Information Gathering Tool) version 1.3a (Unix) allows attackers to cause a denial of service (application crash) or possibly have unspecified other i…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-7938
|
2024-11-21 12:33 |
2017-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248532
|
7.8 |
HIGH
Local
|
linux
|
linux_kernel
|
The cookie feature in the packet action API implementation in net/sched/act_api.c in the Linux kernel 4.11.x through 4.11-rc7 mishandles the tb nlattr array, which allows local users to cause a denia…
|
CWE-20
Improper Input Validation
|
CVE-2017-7979
|
2024-11-21 12:33 |
2017-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248533
|
7.5 |
HIGH
Network
|
samsung
|
samsung_mobile
|
Samsung Android devices with L(5.0/5.1), M(6.0), and N(7.x) software allow attackers to obtain sensitive information by reading a world-readable log file after an unexpected reboot. The Samsung ID is…
|
CWE-200
Information Exposure
|
CVE-2017-7978
|
2024-11-21 12:33 |
2017-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248534
|
7.1 |
HIGH
Local
|
artifex
|
jbig2dec
|
Artifex jbig2dec 0.13 allows out-of-bounds writes and reads because of an integer overflow in the jbig2_image_compose function in jbig2_image.c during operations on a crafted .jb2 file, leading to a …
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-7976
|
2024-11-21 12:33 |
2017-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248535
|
7.8 |
HIGH
Local
|
artifex
|
jbig2dec
|
Artifex jbig2dec 0.13, as used in Ghostscript, allows out-of-bounds writes because of an integer overflow in the jbig2_build_huffman_table function in jbig2_huffman.c during operations on a crafted J…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-7975
|
2024-11-21 12:33 |
2017-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248536
|
10.0 |
CRITICAL
Network
|
zyxel
|
wre6505_firmware
|
Zyxel WRE6505 devices have a default TELNET password of 1234 for the root and admin accounts, which makes it easier for remote attackers to conduct DNS hijacking attacks by reconfiguring the built-in…
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2017-7964
|
2024-11-21 12:33 |
2017-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248537
|
7.5 |
HIGH
Network
|
php
|
php
|
The GNU Multiple Precision Arithmetic Library (GMP) interfaces for PHP through 7.1.4 allow attackers to cause a denial of service (memory consumption and application crash) via operations on long str…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2017-7963
|
2024-11-21 12:33 |
2017-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248538
|
5.5 |
MEDIUM
Local
|
entropymine
|
imageworsener
|
The iwgif_read_image function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a craf…
|
CWE-369
Divide By Zero
|
CVE-2017-7962
|
2024-11-21 12:33 |
2017-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248539
|
5.5 |
MEDIUM
Local
|
gnome
|
libcroco
|
The cr_input_new_from_uri function in cr-input.c in libcroco 0.6.11 and 0.6.12 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted CSS file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-7960
|
2024-11-21 12:33 |
2017-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
248540
|
7.8 |
HIGH
Local
|
artifex
|
ghostscript
|
Integer overflow in the mark_curve function in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified o…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-7948
|
2024-11-21 12:33 |
2017-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
