|
267361
|
7.8 |
HIGH
Local
|
suse
|
linux_enterprise_server
linux_enterprise_desktop
suse_linux_enterprise_server
|
A code injection in the supportconfig data collection tool in supportutils in SUSE Linux Enterprise Server 12 and 12-SP1 and SUSE Linux Enterprise Desktop 12 and 12-SP1 could be used by local attacke…
|
CWE-94
Code Injection
|
CVE-2016-1602
|
2024-11-21 11:46 |
2017-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267362
|
8.8 |
HIGH
Network
|
netiq
|
access_governance_suite
|
A logged-in user in NetIQ Access Governance Suite 6.0 through 6.4 could escalate privileges to administrator.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-1597
|
2024-11-21 11:46 |
2017-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267363
|
9.8 |
CRITICAL
Network
|
quagga
debian
|
quagga
debian_linux
|
It was discovered that the zebra daemon in Quagga before 1.0.20161017 suffered from a stack-based buffer overflow when processing IPv6 Neighbor Discovery messages. The root cause was relying on BUFSI…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-1245
|
2024-11-21 11:46 |
2017-02-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267364
|
5.9 |
MEDIUM
Network
|
dbd-mysql_project
|
dbd-mysql
|
The DBD::mysql module before 4.039 for Perl, when using server-side prepared statement support, allows attackers to cause a denial of service (out-of-bounds read) via vectors involving an unaligned n…
|
CWE-125
Out-of-bounds Read
|
CVE-2016-1249
|
2024-11-21 11:46 |
2017-02-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267365
|
7.3 |
HIGH
Network
|
netapp
|
snapcenter_server
|
NetApp SnapCenter Server 1.0 and 1.0P1 allows remote attackers to partially bypass authentication and then list and delete backups via unspecified vectors.
|
CWE-287
Improper Authentication
|
CVE-2016-1502
|
2024-11-21 11:46 |
2017-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267366
|
7.5 |
HIGH
Network
|
dhcpcd_project
|
dhcpcd
|
dhcpcd before 6.10.0 allows remote attackers to cause a denial of service (invalid read and crash) via vectors related to the option length.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-1504
|
2024-11-21 11:46 |
2017-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267367
|
5.4 |
MEDIUM
Network
|
apache
|
guacamole
|
Cross-site scripting (XSS) vulnerability in the file browser in Guacamole 0.9.8 and 0.9.9, when file transfer is enabled to a location shared by multiple users, allows remote authenticated users to i…
|
CWE-79
Cross-site Scripting
|
CVE-2016-1566
|
2024-11-21 11:46 |
2017-02-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267368
|
8.8 |
HIGH
Network
|
snort
|
snort
|
Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse tcapi.dll that is located in the same…
|
CWE-426
Untrusted Search Path
|
CVE-2016-1417
|
2024-11-21 11:46 |
2017-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267369
|
7.8 |
HIGH
Local
|
idrix
|
truecrypt
veracrypt
|
Untrusted search path vulnerability in the installer for TrueCrypt 7.2 and 7.1a, VeraCrypt before 1.17-BETA, and possibly other products allows local users to execute arbitrary code with administrato…
|
CWE-426
Untrusted Search Path
|
CVE-2016-1281
|
2024-11-21 11:46 |
2017-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267370
|
3.7 |
LOW
Network
|
ntp
ntpsec
|
ntp
ntpsec
|
ntpd in NTP 4.2.8p3 and NTPsec a5fb34b9cc89b92a8fef2f459004865c93bb7f92 relies on the underlying operating system to protect it from requests that impersonate reference clocks. Because reference cloc…
|
CWE-254
7PK - Security Features
|
CVE-2016-1551
|
2024-11-21 11:46 |
2017-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
