|
264811
|
5.5 |
MEDIUM
Local
|
google
|
android
|
The non-existent notification listener vulnerability was introduced in the initial Android 5.0.2 builds for the Samsung Galaxy S6 Edge devices, but the vulnerability can persist on the device even af…
|
CWE-200
Information Exposure
|
CVE-2016-6910
|
2024-11-21 11:57 |
2016-12-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264812
|
5.5 |
MEDIUM
Local
|
ffmpeg
|
ffmpeg
|
The avi_read_nikon function in libavformat/avidec.c in FFmpeg before 3.1.4 is vulnerable to infinite loop when it decodes an AVI file that has a crafted 'nctg' structure.
|
CWE-399
Resource Management Errors
|
CVE-2016-7122
|
2024-11-21 11:57 |
2016-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264813
|
5.5 |
MEDIUM
Local
|
ffmpeg
|
ffmpeg
|
The zlib_refill function in libavformat/swfdec.c in FFmpeg before 3.1.3 allows remote attackers to cause an infinite loop denial of service via a crafted SWF file.
|
CWE-399
Resource Management Errors
|
CVE-2016-6881
|
2024-11-21 11:57 |
2016-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264814
|
4.4 |
MEDIUM
Local
|
redhat
|
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_hpc_node
enterprise_linux
|
sudo: It was discovered that the default sudo configuration on Red Hat Enterprise Linux and possibly other Linux implementations preserves the value of INPUTRC which could lead to information disclos…
|
CWE-200
Information Exposure
|
CVE-2016-7091
|
2024-11-21 11:57 |
2016-12-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264815
|
7.5 |
HIGH
Network
|
netapp
|
snap_creator_framework
|
NetApp Snap Creator Framework before 4.3.1 discloses sensitive information which could be viewed by an unauthorized user.
|
CWE-200
Information Exposure
|
CVE-2016-7172
|
2024-11-21 11:57 |
2016-12-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264816
|
7.8 |
HIGH
Local
|
microsoft
|
auto_updater_for_mac
|
Untrusted search path vulnerability in Microsoft Auto Updater for Mac allows local users to gain privileges via a Trojan horse executable file, aka "Microsoft (MAU) Office Elevation of Privilege Vuln…
|
CWE-426
Untrusted Search Path
|
CVE-2016-7300
|
2024-11-21 11:57 |
2016-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264817
|
7.8 |
HIGH
Local
|
microsoft
|
word_viewer
office
|
Microsoft Office 2007 SP3, Office 2010 SP2, Word Viewer, Office for Mac 2011, and Office 2016 for Mac allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption)…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-7298
|
2024-11-21 11:57 |
2016-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264818
|
7.5 |
HIGH
Network
|
microsoft
|
edge
|
The scripting engines in Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corrupti…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-7297
|
2024-11-21 11:57 |
2016-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264819
|
7.5 |
HIGH
Network
|
microsoft
|
edge
|
The scripting engines in Microsoft Edge allow remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Scripting Engine Memory Corrupti…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-7296
|
2024-11-21 11:57 |
2016-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264820
|
5.5 |
MEDIUM
Local
|
microsoft
|
windows_server_2012
windows_10
windows_server_2016
windows_8.1
windows_server_2008
windows_7
windows_rt_8.1
windows_vista
|
The Common Log File System (CLFS) driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Go…
|
CWE-200
Information Exposure
|
CVE-2016-7295
|
2024-11-21 11:57 |
2016-12-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
