|
247721
|
5.5 |
MEDIUM
Local
|
freeware_advanced_audio_coder_project
|
freeware_advanced_audio_coder
|
The faacEncOpen function in libfaac/frame.c in Freeware Advanced Audio Coder (FAAC) 1.28 allows remote attackers to cause a denial of service (invalid memory read and application crash) via a crafted…
|
CWE-125
Out-of-bounds Read
|
CVE-2017-9130
|
2024-11-21 12:35 |
2017-06-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247722
|
5.5 |
MEDIUM
Local
|
audiocoding
|
freeware_advanced_audio_coder
|
The wav_open_read function in frontend/input.c in Freeware Advanced Audio Coder (FAAC) 1.28 allows remote attackers to cause a denial of service (large loop) via a crafted wav file.
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2017-9129
|
2024-11-21 12:35 |
2017-06-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247723
|
5.5 |
MEDIUM
Local
|
qemu
debian
|
qemu
debian_linux
|
QEMU (aka Quick Emulator), when built with USB xHCI controller emulator support, allows local guest OS privileged users to cause a denial of service (infinite recursive call) via vectors involving co…
|
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
|
CVE-2017-9375
|
2024-11-21 12:35 |
2017-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247724
|
5.5 |
MEDIUM
Local
|
qemu
|
qemu
|
Memory leak in QEMU (aka Quick Emulator), when built with USB EHCI Emulation support, allows local guest OS privileged users to cause a denial of service (memory consumption) by repeatedly hot-unplug…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2017-9374
|
2024-11-21 12:35 |
2017-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247725
|
5.5 |
MEDIUM
Local
|
qemu
debian
|
qemu
debian_linux
|
Memory leak in QEMU (aka Quick Emulator), when built with IDE AHCI Emulation support, allows local guest OS privileged users to cause a denial of service (memory consumption) by repeatedly hot-unplug…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2017-9373
|
2024-11-21 12:35 |
2017-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247726
|
7.5 |
HIGH
Network
|
citrix
|
xenmobile_server
|
XML external entity (XXE) vulnerability in Citrix XenMobile Server 9.x and 10.x before 10.5 RP3 allows attackers to obtain sensitive information via unspecified vectors.
|
CWE-611
XXE
|
CVE-2017-9231
|
2024-11-21 12:35 |
2017-06-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247727
|
9.1 |
CRITICAL
Network
|
hoytech
|
antiweb
|
In Anti-Web through 3.8.7, as used on NetBiter FGW200 devices through 3.21.2, WS100 devices through 3.30.5, EC150 devices through 1.40.0, WS200 devices through 3.30.4, EC250 devices through 1.40.0, a…
|
CWE-22
Path Traversal
|
CVE-2017-9097
|
2024-11-21 12:35 |
2017-06-16 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247728
|
9.8 |
CRITICAL
Network
|
newrelic
|
.net_agent
|
New Relic .NET Agent before 6.3.123.0 adds SQL injection flaws to safe applications via vectors involving failure to escape quotes during use of the Slow Queries feature, as demonstrated by a mishand…
|
CWE-89
SQL Injection
|
CVE-2017-9246
|
2024-11-21 12:35 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247729
|
8.8 |
HIGH
Network
|
otrs
debian
|
otrs
debian_linux
|
In Open Ticket Request System (OTRS) 3.3.x through 3.3.16, 4.x through 4.0.23, and 5.x through 5.0.19, an attacker with agent permission is capable of opening a specific URL in a browser to gain admi…
|
CWE-269
Improper Privilege Management
|
CVE-2017-9324
|
2024-11-21 12:35 |
2017-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
247730
|
6.5 |
MEDIUM
Network
|
libquicktime
|
libquicktime
|
The quicktime_video_width function in lqt_quicktime.c in libquicktime 1.2.4 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted mp4 …
|
CWE-125
Out-of-bounds Read
|
CVE-2017-9128
|
2024-11-21 12:35 |
2017-06-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
