|
265341
|
6.3 |
MEDIUM
Network
|
netapp
|
snap_creator_framework
|
Cross-site request forgery (CSRF) vulnerability in NetApp Snap Creator Framework before 4.3.0P1 allows remote attackers to hijack the authentication of users for requests that have unspecified impact…
|
CWE-352
Origin Validation Error
|
CVE-2016-5372
|
2024-11-21 11:54 |
2017-02-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265342
|
5.5 |
MEDIUM
Local
|
pacman_project
|
pacman
|
libalpm, as used in pacman 5.0.1, allows remote attackers to cause a denial of service (infinite loop or out-of-bounds read) via a crafted signature file.
|
CWE-399
CWE-125
Resource Management Errors
Out-of-bounds Read
|
CVE-2016-5434
|
2024-11-21 11:54 |
2017-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265343
|
9.8 |
CRITICAL
Network
|
sixapart
|
movable_type
movable_type_open_source
|
SQL injection vulnerability in the XML-RPC interface in Movable Type Pro and Advanced 6.x before 6.1.3 and 6.2.x before 6.2.6 and Movable Type Open Source 5.2.13 and earlier allows remote attackers t…
|
CWE-89
SQL Injection
|
CVE-2016-5742
|
2024-11-21 11:54 |
2017-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265344
|
7.8 |
HIGH
Local
|
microsoft
|
skype
|
Multiple untrusted search path vulnerabilities in Microsoft Skype allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) msi.dll, (2) dpapi.dll, or (3) c…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-5720
|
2024-11-21 11:54 |
2017-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265345
|
7.5 |
HIGH
Network
|
onelogin
|
ruby-saml
|
Ruby-saml before 1.3.0 allows attackers to perform XML signature wrapping attacks via unspecified vectors.
|
CWE-91
Blind XPath Injection
|
CVE-2016-5697
|
2024-11-21 11:54 |
2017-01-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265346
|
7.5 |
HIGH
Network
|
libtiff
opensuse
|
libtiff
opensuse
|
The _TIFFFax3fillruns function in libtiff before 4.0.6 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted Tiff image.
|
CWE-369
Divide By Zero
|
CVE-2016-5323
|
2024-11-21 11:54 |
2017-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265347
|
6.5 |
MEDIUM
Network
|
opensuse
libtiff
|
opensuse
libtiff
|
The DumpModeDecode function in libtiff 4.0.6 and earlier allows attackers to cause a denial of service (invalid read and crash) via a crafted tiff image.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-5321
|
2024-11-21 11:54 |
2017-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265348
|
6.5 |
MEDIUM
Network
|
libtiff
|
libtiff
|
Heap-based buffer overflow in tif_packbits.c in libtiff 4.0.6 and earlier allows remote attackers to crash the application via a crafted bmp file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-5319
|
2024-11-21 11:54 |
2017-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265349
|
6.5 |
MEDIUM
Network
|
libtiff
|
libtiff
|
Stack-based buffer overflow in the _TIFFVGetField function in libtiff 4.0.6 and earlier allows remote attackers to crash the application via a crafted tiff.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-5318
|
2024-11-21 11:54 |
2017-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
265350
|
6.5 |
MEDIUM
Network
|
libtiff
opensuse_project
opensuse
|
libtiff
leap
opensuse
|
Buffer overflow in the PixarLogDecode function in libtiff.so in the PixarLogDecode function in libtiff 4.0.6 and earlier, as used in GNOME nautilus, allows attackers to cause a denial of service atta…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-5317
|
2024-11-21 11:54 |
2017-01-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
