|
265651
|
6.5 |
MEDIUM
Network
|
libtiff
|
libtiff
|
The DumpModeEncode function in tif_dumpmode.c in the bmp2tiff tool in LibTIFF 4.0.6 and earlier, when the "-c none" option is used, allows remote attackers to cause a denial of service (buffer over-r…
|
CWE-125
Out-of-bounds Read
|
CVE-2016-3619
|
2024-11-21 11:50 |
2016-10-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265652
|
4.3 |
MEDIUM
Network
|
sap
|
hana_db
|
SAP HANA DB 1.00.091.00.1418659308 allows remote attackers to obtain sensitive topology information via an unspecified HTTP request, aka SAP Security Note 2176128.
|
CWE-200
Information Exposure
|
CVE-2016-3639
|
2024-11-21 11:50 |
2016-09-27 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265653
|
7.8 |
HIGH
Local
|
libtiff
oracle
|
libtiff
vm_server
|
Multiple integer overflows in the (1) cvt_by_strip and (2) cvt_by_tile functions in the tiff2rgba tool in LibTIFF 4.0.6 and earlier, when -b mode is enabled, allow remote attackers to cause a denial …
|
CWE-787
CWE-190
Out-of-bounds Write
Integer Overflow or Wraparound
|
CVE-2016-3945
|
2024-11-21 11:50 |
2016-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265654
|
7.8 |
HIGH
Local
|
libtiff
oracle
|
libtiff
vm_server
|
The _TIFFVGetField function in tif_dirinfo.c in LibTIFF 4.0.6 and earlier allows remote attackers to cause a denial of service (out-of-bounds write) or execute arbitrary code via a crafted TIFF image.
|
CWE-787
Out-of-bounds Write
|
CVE-2016-3632
|
2024-11-21 11:50 |
2016-09-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265655
|
5.5 |
MEDIUM
Local
|
google
|
android
|
OMXCodec.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-09-01, and 7.0 before 2016-09-01 does not validate a certain pointer…
|
CWE-284
Improper Access Control
|
CVE-2016-3899
|
2024-11-21 11:50 |
2016-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265656
|
5.5 |
MEDIUM
Local
|
google
|
android
|
Telephony in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, 6.x before 2016-09-01, and 7.0 before 2016-09-01 allows attackers to cause a denial of service (loss of locked-screen 911 TTY functionalit…
|
CWE-284
Improper Access Control
|
CVE-2016-3898
|
2024-11-21 11:50 |
2016-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265657
|
5.5 |
MEDIUM
Local
|
google
|
android
|
The WifiEnterpriseConfig class in net/wifi/WifiEnterpriseConfig.java in Wi-Fi in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-09-01 includes a password in the…
|
CWE-200
Information Exposure
|
CVE-2016-3897
|
2024-11-21 11:50 |
2016-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265658
|
5.5 |
MEDIUM
Local
|
google
|
android
|
AOSP Mail in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-09-01 allows attackers to obtain sensitive EmailAccountCacheProvider information via a crafted appli…
|
CWE-200
Information Exposure
|
CVE-2016-3896
|
2024-11-21 11:50 |
2016-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265659
|
5.5 |
MEDIUM
Local
|
google
|
android
|
Integer overflow in the Region::unflatten function in libs/ui/Region.cpp in mediaserver in Android 6.x before 2016-09-01 and 7.0 before 2016-09-01 allows attackers to obtain sensitive information via…
|
CWE-200
CWE-190
Information Exposure
Integer Overflow or Wraparound
|
CVE-2016-3895
|
2024-11-21 11:50 |
2016-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265660
|
5.5 |
MEDIUM
Local
|
google
|
android
|
The Qualcomm DMA component in Android before 2016-09-05 on Nexus 6 devices allows attackers to obtain sensitive information via a crafted application, aka Android internal bug 29618014 and Qualcomm i…
|
CWE-200
Information Exposure
|
CVE-2016-3894
|
2024-11-21 11:50 |
2016-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
