|
259521
|
7.8 |
HIGH
Local
|
xnview
|
xnview
|
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV starting at ntdll_77400000!Rt…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14273
|
2024-11-21 12:12 |
2017-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259522
|
7.8 |
HIGH
Local
|
xnview
|
xnview
|
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV starting at jbig2dec+0x000000…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14272
|
2024-11-21 12:12 |
2017-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259523
|
7.8 |
HIGH
Local
|
xnview
|
xnview
|
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV starting at ntdll_77400000!Rt…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14271
|
2024-11-21 12:12 |
2017-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259524
|
7.8 |
HIGH
Local
|
xnview
|
xnview
|
XnView Classic for Windows Version 2.40 allows attackers to execute arbitrary code or cause a denial of service via a crafted .jb2 file, related to a "User Mode Write AV starting at ntdll_77400000!Rt…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14270
|
2024-11-21 12:12 |
2017-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259525
|
7.8 |
HIGH
Local
|
jungo
|
windriver
|
This vulnerability allows local attackers to escalate privileges on Jungo WinDriver 12.4.0 and earlier. An attacker must first obtain the ability to execute low-privileged code on the target system i…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14153
|
2024-11-21 12:12 |
2017-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259526
|
7.8 |
HIGH
Local
|
jungo
|
windriver
|
This vulnerability allows local attackers to escalate privileges on Jungo WinDriver 12.4.0 and earlier. An attacker must first obtain the ability to execute low-privileged code on the target system i…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-14075
|
2024-11-21 12:12 |
2017-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259527
|
9.8 |
CRITICAL
Network
|
ee
|
4gee_wifi_mbb_firmware
|
EE 4GEE WiFi MBB (before EE60_00_05.00_31) devices allow remote attackers to obtain sensitive information via a JSONP endpoint, as demonstrated by passwords and SMS content.
|
CWE-200
Information Exposure
|
CVE-2017-14269
|
2024-11-21 12:12 |
2017-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259528
|
6.1 |
MEDIUM
Network
|
ee
|
4gee_wifi_mbb_firmware
|
EE 4GEE WiFi MBB (before EE60_00_05.00_31) devices have XSS in the sms_content parameter in a getSMSlist request.
|
CWE-79
Cross-site Scripting
|
CVE-2017-14268
|
2024-11-21 12:12 |
2017-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259529
|
8.8 |
HIGH
Network
|
ee
|
4gee_wifi_mbb_firmware
|
EE 4GEE WiFi MBB (before EE60_00_05.00_31) devices have CSRF, related to goform/AddNewProfile, goform/setWanDisconnect, goform/setSMSAutoRedirectSetting, goform/setReset, and goform/uploadBackupSetti…
|
CWE-352
Origin Validation Error
|
CVE-2017-14267
|
2024-11-21 12:12 |
2017-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
259530
|
9.8 |
CRITICAL
Network
|
libraw
|
libraw
|
A Stack-based Buffer Overflow was discovered in xtrans_interpolate in internal/dcraw_common.cpp in LibRaw before 0.18.3. It could allow a remote denial of service or code execution attack.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-14265
|
2024-11-21 12:12 |
2017-09-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
