|
269311
|
7.5 |
HIGH
Network
|
unrtf_project
|
unrtf
|
Multiple stack-based buffer overflows in unrtf 0.21.9 allow remote attackers to cause a denial-of-service by writing a negative integer to the (1) cmd_expand function, (2) cmd_emboss function, or (3)…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-10091
|
2024-11-21 11:43 |
2017-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269312
|
7.8 |
HIGH
Local
|
phusion
|
passenger
|
In Phusion Passenger before 5.1.0, a known /tmp filename was used during passenger-install-nginx-module execution, which could allow local attackers to gain the privileges of the passenger user.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-10345
|
2024-11-21 11:43 |
2017-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269313
|
9.8 |
CRITICAL
Network
|
freetype
oracle
|
freetype
outside_in_technology
|
FreeType 2 before 2016-12-16 has an out-of-bounds write caused by a heap-based buffer overflow related to the cff_parser_run function in cff/cffparse.c.
|
CWE-787
Out-of-bounds Write
|
CVE-2016-10328
|
2024-11-21 11:43 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269314
|
9.8 |
CRITICAL
Network
|
libreoffice
|
libreoffice
|
LibreOffice before 2016-12-22 has an out-of-bounds write caused by a heap-based buffer overflow related to the EnhWMFReader::ReadEnhWMF function in vcl/source/filter/wmf/enhwmf.cxx.
|
CWE-787
Out-of-bounds Write
|
CVE-2016-10327
|
2024-11-21 11:43 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269315
|
7.5 |
HIGH
Network
|
gnu
|
osip
|
In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the osip_body_to_str() function defined in osipparser2/osip_body.c, resulting in a remote DoS.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-10326
|
2024-11-21 11:43 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269316
|
7.5 |
HIGH
Network
|
gnu
|
osip
|
In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the _osip_message_to_str() function defined in osipparser2/osip_message_to_str.c, resulting in a remote Do…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-10325
|
2024-11-21 11:43 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269317
|
9.8 |
CRITICAL
Network
|
gnu
|
osip
|
In libosip2 in GNU oSIP 4.1.0, a malformed SIP message can lead to a heap buffer overflow in the osip_clrncpy() function defined in osipparser2/osip_port.c.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-10324
|
2024-11-21 11:43 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269318
|
7.8 |
HIGH
Local
|
firejail_project
|
firejail
|
Firejail allows --chroot when seccomp is not supported, which might allow local users to gain privileges.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-10123
|
2024-11-21 11:43 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269319
|
7.8 |
HIGH
Local
|
firejail_project
|
firejail
|
Firejail does not properly clean environment variables, which allows local users to gain privileges.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-10122
|
2024-11-21 11:43 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269320
|
7.8 |
HIGH
Local
|
firejail_project
|
firejail
|
Firejail uses weak permissions for /dev/shm/firejail and possibly other files, which allows local users to gain privileges.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-10121
|
2024-11-21 11:43 |
2017-04-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
