|
265611
|
7.8 |
HIGH
Local
|
google
|
android
|
wpa_supplicant 0.4.0 through 2.5 does not reject \n and \r characters in passphrase parameters, which allows local users to trigger arbitrary library loading and consequently gain privileges, or caus…
|
CWE-19
Data Processing Errors
|
CVE-2016-4477
|
2024-11-21 11:52 |
2016-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265612
|
7.5 |
HIGH
Network
|
w1.fi
canonical
|
wpa_supplicant
hostapd
ubuntu_linux
|
hostapd 0.6.7 through 2.5 and wpa_supplicant 0.6.7 through 2.5 do not reject \n and \r characters in passphrase parameters, which allows remote attackers to cause a denial of service (daemon outage) …
|
CWE-20
Improper Input Validation
|
CVE-2016-4476
|
2024-11-21 11:52 |
2016-05-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265613
|
9.8 |
CRITICAL
Network
|
libpam-sshauth_project
debian
|
libpam-sshauth
debian_linux
|
The pam_sm_authenticate function in pam_sshauth.c in libpam-sshauth might allow context-dependent attackers to bypass authentication or gain privileges via a system user account.
|
CWE-287
Improper Authentication
|
CVE-2016-4422
|
2024-11-21 11:52 |
2016-05-7 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265614
|
7.5 |
HIGH
Network
|
mcafee
|
livesafe
|
Integer signedness error in the AV engine before DAT 8145, as used in McAfee LiveSafe 14.0, allows remote attackers to cause a denial of service (memory corruption and crash) via a crafted packed exe…
|
CWE-20
Improper Input Validation
|
CVE-2016-4535
|
2024-11-21 11:52 |
2016-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265615
|
3.0 |
LOW
Local
|
mcafee
microsoft
|
virusscan_enterprise
windows
|
The McAfee VirusScan Console (mcconsol.exe) in McAfee VirusScan Enterprise 8.8.0 before Hotfix 1123565 (8.8.0.1546) on Windows allows local administrators to bypass intended self-protection rules and…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-4534
|
2024-11-21 11:52 |
2016-05-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265616
|
5.9 |
MEDIUM
Network
|
wireshark
|
wireshark
|
epan/dissectors/packet-ber.c in the ASN.1 BER dissector in Wireshark 1.12.x before 1.12.10 and 2.x before 2.0.2 allows remote attackers to cause a denial of service (deep recursion, stack consumption…
|
CWE-20
Improper Input Validation
|
CVE-2016-4421
|
2024-11-21 11:52 |
2016-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265617
|
5.9 |
MEDIUM
Network
|
wireshark
|
wireshark
|
The NFS dissector in Wireshark 2.x before 2.0.2 allows remote attackers to cause a denial of service (application crash) via a crafted packet.
|
CWE-20
Improper Input Validation
|
CVE-2016-4420
|
2024-11-21 11:52 |
2016-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265618
|
5.9 |
MEDIUM
Network
|
wireshark
|
wireshark
|
epan/dissectors/packet-spice.c in the SPICE dissector in Wireshark 2.x before 2.0.2 mishandles capability data, which allows remote attackers to cause a denial of service (large loop) via a crafted p…
|
CWE-399
Resource Management Errors
|
CVE-2016-4419
|
2024-11-21 11:52 |
2016-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265619
|
5.9 |
MEDIUM
Network
|
wireshark
|
wireshark
|
epan/dissectors/packet-ber.c in the ASN.1 BER dissector in Wireshark 1.12.x before 1.12.10 and 2.x before 2.0.2 allows remote attackers to cause a denial of service (buffer over-read and application …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-4418
|
2024-11-21 11:52 |
2016-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265620
|
5.9 |
MEDIUM
Network
|
wireshark
|
wireshark
|
Off-by-one error in epan/dissectors/packet-gsm_abis_oml.c in the GSM A-bis OML dissector in Wireshark 1.12.x before 1.12.10 and 2.x before 2.0.2 allows remote attackers to cause a denial of service (…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-4417
|
2024-11-21 11:52 |
2016-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
