|
249971
|
5.5 |
MEDIUM
Local
|
gnome
fedoraproject
debian
|
gdk-pixbuf
fedora
debian_linux
|
The make_available_at_least function in io-tiff.c in gdk-pixbuf allows context-dependent attackers to cause a denial of service (infinite loop) via a large TIFF file.
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2017-6314
|
2024-11-21 12:29 |
2017-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249972
|
7.1 |
HIGH
Local
|
gnome
fedoraproject
debian
|
gdk-pixbuf
fedora
debian_linux
|
Integer underflow in the load_resources function in io-icns.c in gdk-pixbuf allows context-dependent attackers to cause a denial of service (out-of-bounds read and program crash) via a crafted image …
|
CWE-191
Integer Underflow (Wrap or Wraparound)
|
CVE-2017-6313
|
2024-11-21 12:29 |
2017-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249973
|
5.5 |
MEDIUM
Local
|
gnome
fedoraproject
debian
|
gdk-pixbuf
fedora
debian_linux
|
Integer overflow in io-ico.c in gdk-pixbuf allows context-dependent attackers to cause a denial of service (segmentation fault and application crash) via a crafted image entry offset in an ICO file, …
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-6312
|
2024-11-21 12:29 |
2017-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249974
|
7.5 |
HIGH
Network
|
gnome
fedoraproject
|
gdk-pixbuf
fedora
|
gdk-pixbuf-thumbnailer.c in gdk-pixbuf allows context-dependent attackers to cause a denial of service (NULL pointer dereference and application crash) via vectors related to printing an error messag…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-6311
|
2024-11-21 12:29 |
2017-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249975
|
9.8 |
CRITICAL
Network
|
ftpshell
|
ftpshell_client
|
Remote Code Execution was discovered in FTPShell Client 6.53. By default, the client sends a PWD command to the FTP server it is connecting to; however, it doesn't check the response's length, leadin…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-6465
|
2024-11-21 12:29 |
2017-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249976
|
8.8 |
HIGH
Network
|
dnatools
|
dnalims
|
An issue was discovered in dnaTools dnaLIMS 4-2015s13. dnaLIMS is vulnerable to session hijacking by guessing the UID parameter.
|
CWE-613
Insufficient Session Expiration
|
CVE-2017-6529
|
2024-11-21 12:29 |
2017-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249977
|
8.1 |
HIGH
Network
|
dnatools
|
dnalims
|
An issue was discovered in dnaTools dnaLIMS 4-2015s13. dnaLIMS is affected by plaintext password storage (the /home/dna/spool/.pfile file).
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2017-6528
|
2024-11-21 12:29 |
2017-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249978
|
7.5 |
HIGH
Network
|
dnatools
|
dnalims
|
An issue was discovered in dnaTools dnaLIMS 4-2015s13. dnaLIMS is vulnerable to a NUL-terminated directory traversal attack allowing an unauthenticated attacker to access system files readable by the…
|
CWE-22
Path Traversal
|
CVE-2017-6527
|
2024-11-21 12:29 |
2017-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249979
|
9.8 |
CRITICAL
Network
|
dnatools
|
dnalims
|
An issue was discovered in dnaTools dnaLIMS 4-2015s13. dnaLIMS is vulnerable to unauthenticated command execution through an improperly protected administrative web shell (cgi-bin/dna/sysAdmin.cgi PO…
|
CWE-287
Improper Authentication
|
CVE-2017-6526
|
2024-11-21 12:29 |
2017-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249980
|
8.1 |
HIGH
Network
|
dahuasecurity
|
nvr_firmware
|
An issue was discovered on Dahua DHI-HCVR7216A-S3 3.210.0001.10 build 2016-06-06 devices. The Dahua DVR Protocol, which operates on TCP Port 37777, is an unencrypted, binary protocol. Performing a Ma…
|
CWE-319
Cleartext Transmission of Sensitive Information
|
CVE-2017-6432
|
2024-11-21 12:29 |
2017-03-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
