|
258271
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) via a crafted file that is mishandled in an AcquireSemaphoreInfo…
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-11755
|
2024-11-21 12:08 |
2017-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258272
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) via a crafted file that is mishandled in an OpenPixelCache call.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-11754
|
2024-11-21 12:08 |
2017-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258273
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
The GetImageDepth function in MagickCore/attribute.c in ImageMagick 7.0.6-4 might allow remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted Flexible Image Transp…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-11753
|
2024-11-21 12:08 |
2017-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258274
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
The ReadMAGICKImage function in coders/magick.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) via a crafted file.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-11752
|
2024-11-21 12:08 |
2017-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258275
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) via a crafted file.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-11751
|
2024-11-21 12:08 |
2017-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258276
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
The ReadOneJNGImage function in coders/png.c in ImageMagick 6.9.9-4 and 7.0.6-4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-11750
|
2024-11-21 12:08 |
2017-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258277
|
7.5 |
HIGH
Network
|
yaml-cpp_project
|
yaml-cpp
|
The function "Token& Scanner::peek" in scanner.cpp in yaml-cpp 0.5.3 and earlier allows remote attackers to cause a denial of service (assertion failure and application exit) via a '!2' string.
|
CWE-617
Reachable Assertion
|
CVE-2017-11692
|
2024-11-21 12:08 |
2017-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258278
|
7.8 |
HIGH
Local
|
internet-soft
|
ftp_commander
|
InternetSoft FTP Commander 8.02 and prior has an untrusted search path, allowing DLL hijacking via a Trojan horse dwmapi.dll file.
|
CWE-426
Untrusted Search Path
|
CVE-2017-11749
|
2024-11-21 12:08 |
2017-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258279
|
7.8 |
HIGH
Local
|
softonic
|
spider_player
|
VIT Spider Player 2.5.3 has an untrusted search path, allowing DLL hijacking via a Trojan horse dwmapi.dll, olepro32.dll, dsound.dll, or AUDIOSES.dll file.
|
CWE-426
Untrusted Search Path
|
CVE-2017-11748
|
2024-11-21 12:08 |
2017-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
258280
|
5.5 |
MEDIUM
Local
|
tinyproxy_project
|
tinyproxy
|
main.c in Tinyproxy 1.8.4 and earlier creates a /run/tinyproxy/tinyproxy.pid file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leverag…
|
CWE-269
Improper Privilege Management
|
CVE-2017-11747
|
2024-11-21 12:08 |
2017-07-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
