|
264611
|
6.5 |
MEDIUM
Network
|
uclouvain
|
openjpeg
|
NULL Pointer Access in function imagetopnm of convert.c:2226(jp2) in OpenJPEG 2.1.2. Impact is Denial of Service. Someone must open a crafted j2k file.
|
CWE-476
NULL Pointer Dereference
|
CVE-2016-9116
|
2024-11-21 12:00 |
2016-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264612
|
6.5 |
MEDIUM
Network
|
uclouvain
|
openjpeg
|
Heap Buffer Over-read in function imagetotga of convert.c(jp2):942 in OpenJPEG 2.1.2. Impact is Denial of Service. Someone must open a crafted j2k file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9115
|
2024-11-21 12:00 |
2016-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264613
|
7.5 |
HIGH
Network
|
uclouvain
|
openjpeg
|
There is a NULL Pointer Access in function imagetopnm of convert.c:1943(jp2) of OpenJPEG 2.1.2. image->comps[compno].data is not assigned a value after initialization(NULL). Impact is Denial of Servi…
|
CWE-476
NULL Pointer Dereference
|
CVE-2016-9114
|
2024-11-21 12:00 |
2016-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264614
|
7.5 |
HIGH
Network
|
uclouvain
|
openjpeg
|
There is a NULL pointer dereference in function imagetobmp of convertbmp.c:980 of OpenJPEG 2.1.2. image->comps[0].data is not assigned a value after initialization(NULL). Impact is Denial of Service.
|
CWE-476
NULL Pointer Dereference
|
CVE-2016-9113
|
2024-11-21 12:00 |
2016-10-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264615
|
7.5 |
HIGH
Network
|
uclouvain
|
openjpeg
|
Floating Point Exception (aka FPE or divide by zero) in opj_pi_next_cprl function in openjp2/pi.c:523 in OpenJPEG 2.1.2.
|
CWE-369
Divide By Zero
|
CVE-2016-9112
|
2024-11-21 12:00 |
2016-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264616
|
8.8 |
HIGH
Network
|
citrix
|
netscaler_application_delivery_controller_firmware
|
Unauthorized redirect vulnerability in Citrix NetScaler ADC before 10.1 135.8, 10.5 61.11, 11.0 65.31/65.35F and 11.1 47.14 allows a remote attacker to steal session cookies of a legitimate AAA user …
|
CWE-254
7PK - Security Features
|
CVE-2016-9028
|
2024-11-21 12:00 |
2016-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264617
|
5.5 |
MEDIUM
Local
|
realnetworks
|
realplayer
|
Improper handling of a repeating VRAT chunk in qcpfformat.dll allows attackers to cause a Null pointer dereference and crash in RealNetworks RealPlayer 18.1.5.705 through a crafted .QCP media file.
|
CWE-476
NULL Pointer Dereference
|
CVE-2016-9018
|
2024-11-21 12:00 |
2016-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264618
|
7.5 |
HIGH
Network
|
artifex
|
mujs
|
Artifex Software, Inc. MuJS before a5c747f1d40e8d6659a37a8d25f13fb5acf8e767 allows context-dependent attackers to obtain sensitive information by using the "opname in crafted JavaScript file" approac…
|
CWE-200
CWE-125
Information Exposure
Out-of-bounds Read
|
CVE-2016-9017
|
2024-11-21 12:00 |
2016-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264619
|
6.2 |
MEDIUM
Local
|
bitcoin_knots_project
|
bitcoin_knots
|
In Bitcoin Knots v0.11.0.ljr20150711 through v0.13.0.knots20160814 (fixed in v0.13.1.knots20161027), the debug console stores sensitive information including private keys and the wallet passphrase in…
|
CWE-310
CWE-200
Cryptographic Issues
Information Exposure
|
CVE-2016-8889
|
2024-11-21 12:00 |
2016-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264620
|
6.2 |
MEDIUM
Local
|
botan_project
|
botan
|
In Botan 1.11.29 through 1.11.32, RSA decryption with certain padding options had a detectable timing channel which could given sufficient queries be used to recover plaintext, aka an "OAEP side chan…
|
CWE-200
Information Exposure
|
CVE-2016-8871
|
2024-11-21 12:00 |
2016-10-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
