|
247191
|
7.5 |
HIGH
Network
|
xmlsoft
|
libxml2
|
A buffer overflow was discovered in libxml2 20904-GITv2.9.4-16-g0741801. The function xmlSnprintfElementContent in valid.c is supposed to recursively dump the element content definition into a char b…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-9047
|
2024-11-21 12:35 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247192
|
5.9 |
MEDIUM
Network
|
google
|
google_i\/o_2017
|
The Google I/O 2017 application before 5.1.4 for Android downloads multiple .json files from http://storage.googleapis.com without SSL, which makes it easier for man-in-the-middle attackers to spoof …
|
CWE-311
Missing Encryption of Sensitive Data
|
CVE-2017-9045
|
2024-11-21 12:35 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247193
|
5.5 |
MEDIUM
Local
|
gnu
|
binutils
|
The print_symbol_for_build_attribute function in readelf.c in GNU Binutils 2017-04-12 allows remote attackers to cause a denial of service (invalid read and SEGV) via a crafted ELF file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-9044
|
2024-11-21 12:35 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247194
|
7.8 |
HIGH
Local
|
gnu
|
binutils
|
readelf.c in GNU Binutils 2017-04-12 has a "shift exponent too large for type unsigned long" issue, which might allow remote attackers to cause a denial of service (application crash) or possibly hav…
|
CWE-20
Improper Input Validation
|
CVE-2017-9043
|
2024-11-21 12:35 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247195
|
7.8 |
HIGH
Local
|
gnu
|
binutils
|
readelf.c in GNU Binutils 2017-04-12 has a "cannot be represented in type long" issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified…
|
CWE-704
Incorrect Type Conversion or Cast
|
CVE-2017-9042
|
2024-11-21 12:35 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247196
|
5.5 |
MEDIUM
Local
|
gnu
|
binutils
|
GNU Binutils 2.28 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file, related to MIPS GOT mishandling in the process_mips_…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-9041
|
2024-11-21 12:35 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247197
|
5.5 |
MEDIUM
Local
|
gnu
|
binutils
|
GNU Binutils 2017-04-03 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash), related to the process_mips_specific function in readelf.c, via a crafte…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-9040
|
2024-11-21 12:35 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247198
|
5.5 |
MEDIUM
Local
|
gnu
|
binutils
|
GNU Binutils 2.28 allows remote attackers to cause a denial of service (memory consumption) via a crafted ELF file with many program headers, related to the get_program_headers function in readelf.c.
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2017-9039
|
2024-11-21 12:35 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247199
|
5.5 |
MEDIUM
Local
|
gnu
|
binutils
|
GNU Binutils 2.28 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted ELF file, related to the byte_get_little_endian function in el…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-9038
|
2024-11-21 12:35 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247200
|
9.8 |
CRITICAL
Network
|
deluge-torrent
|
deluge
|
The WebUI component in Deluge before 1.3.15 contains a directory traversal vulnerability involving a request in which the name of the render file is not associated with any template file.
|
CWE-22
Path Traversal
|
CVE-2017-9031
|
2024-11-21 12:35 |
2017-05-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
