|
246971
|
9.8 |
CRITICAL
Network
|
newrelic
|
.net_agent
|
New Relic .NET Agent before 6.3.123.0 adds SQL injection flaws to safe applications via vectors involving failure to escape quotes during use of the Slow Queries feature, as demonstrated by a mishand…
|
CWE-89
SQL Injection
|
CVE-2017-9246
|
2024-11-21 12:35 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246972
|
8.8 |
HIGH
Network
|
otrs
debian
|
otrs
debian_linux
|
In Open Ticket Request System (OTRS) 3.3.x through 3.3.16, 4.x through 4.0.23, and 5.x through 5.0.19, an attacker with agent permission is capable of opening a specific URL in a browser to gain admi…
|
CWE-269
Improper Privilege Management
|
CVE-2017-9324
|
2024-11-21 12:35 |
2017-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246973
|
6.5 |
MEDIUM
Network
|
libquicktime
|
libquicktime
|
The quicktime_video_width function in lqt_quicktime.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted mp4 …
|
CWE-125
Out-of-bounds Read
|
CVE-2017-9128
|
2024-11-21 12:35 |
2017-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246974
|
6.5 |
MEDIUM
Network
|
libquicktime
|
libquicktime
|
The quicktime_user_atoms_read_atom function in useratoms.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) via a crafted …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-9127
|
2024-11-21 12:35 |
2017-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246975
|
6.5 |
MEDIUM
Network
|
libquicktime
|
libquicktime
|
The quicktime_read_dref_table function in dref.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) via a crafted mp4 file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-9126
|
2024-11-21 12:35 |
2017-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246976
|
6.5 |
MEDIUM
Network
|
libquicktime
|
libquicktime
|
The lqt_frame_duration function in lqt_quicktime.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted mp4 file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-9125
|
2024-11-21 12:35 |
2017-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246977
|
6.5 |
MEDIUM
Network
|
libquicktime
|
libquicktime
|
The quicktime_match_32 function in util.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted mp4 file.
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-9124
|
2024-11-21 12:35 |
2017-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246978
|
6.5 |
MEDIUM
Network
|
libquicktime
|
libquicktime
|
The lqt_frame_duration function in lqt_quicktime.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service (invalid memory read and application crash) via a crafted mp4 file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-9123
|
2024-11-21 12:35 |
2017-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246979
|
6.5 |
MEDIUM
Network
|
libquicktime
|
libquicktime
|
The quicktime_read_moov function in moov.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a crafted mp4 file.
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2017-9122
|
2024-11-21 12:35 |
2017-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
246980
|
5.6 |
MEDIUM
Local
|
qemu
debian
|
qemu
debian_linux
|
QEMU (aka Quick Emulator) before 2.9.0, when built with the USB OHCI Emulation support, allows local guest OS users to cause a denial of service (infinite loop) by leveraging an incorrect return valu…
|
NVD-CWE-noinfo
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2017-9330
|
2024-11-21 12:35 |
2017-06-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
