|
269601
|
6.1 |
MEDIUM
Network
|
opsview
|
opsview
|
Open redirect vulnerability in Opsview Monitor Pro (Prior to 5.1.0.162300841, prior to 5.0.2.27475, prior to 4.6.4.162391051, and 4.5.x without a certain 2016 security patch) allows remote attackers …
|
CWE-601
Open Redirect
|
CVE-2016-10368
|
2024-11-21 11:43 |
2017-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269602
|
7.5 |
HIGH
Network
|
opsview
|
opsview
|
In Opsview Monitor Pro (Prior to 5.1.0.162300841, prior to 5.0.2.27475, prior to 4.6.4.162391051, and 4.5.x without a certain 2016 security patch), an unauthenticated Directory Traversal vulnerabilit…
|
CWE-22
Path Traversal
|
CVE-2016-10367
|
2024-11-21 11:43 |
2017-05-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269603
|
9.8 |
CRITICAL
Network
|
debian
fedoraproject
tug
|
debian_linux
fedora
tex_live
|
TeX Live allows remote attackers to execute arbitrary commands by leveraging inclusion of mpost in shell_escape_commands in the texmf.cnf config file.
|
CWE-20
Improper Input Validation
|
CVE-2016-10243
|
2024-11-21 11:43 |
2017-05-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269604
|
5.5 |
MEDIUM
Local
|
telegram_desktop
|
telegram_desktop
|
Telegram Desktop 0.10.19 uses 0755 permissions for $HOME/.TelegramDesktop, which allows local users to obtain sensitive authentication information via standard filesystem operations.
|
CWE-200
Information Exposure
|
CVE-2016-10351
|
2024-11-21 11:43 |
2017-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269605
|
5.5 |
MEDIUM
Local
|
libarchive
|
libarchive
|
The archive_read_format_cab_read_header function in archive_read_support_format_cab.c in libarchive 3.2.2 allows remote attackers to cause a denial of service (heap-based buffer over-read and applica…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-10350
|
2024-11-21 11:43 |
2017-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269606
|
5.5 |
MEDIUM
Local
|
libarchive
|
libarchive
|
The archive_le32dec function in archive_endian.h in libarchive 3.2.2 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-10349
|
2024-11-21 11:43 |
2017-05-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269607
|
7.5 |
HIGH
Network
|
unrtf_project
|
unrtf
|
Multiple stack-based buffer overflows in unrtf 0.21.9 allow remote attackers to cause a denial-of-service by writing a negative integer to the (1) cmd_expand function, (2) cmd_emboss function, or (3)…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-10091
|
2024-11-21 11:43 |
2017-04-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269608
|
7.8 |
HIGH
Local
|
phusion
|
passenger
|
In Phusion Passenger before 5.1.0, a known /tmp filename was used during passenger-install-nginx-module execution, which could allow local attackers to gain the privileges of the passenger user.
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-10345
|
2024-11-21 11:43 |
2017-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269609
|
9.8 |
CRITICAL
Network
|
freetype
oracle
|
freetype
outside_in_technology
|
FreeType 2 before 2016-12-16 has an out-of-bounds write caused by a heap-based buffer overflow related to the cff_parser_run function in cff/cffparse.c.
|
CWE-787
Out-of-bounds Write
|
CVE-2016-10328
|
2024-11-21 11:43 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
269610
|
9.8 |
CRITICAL
Network
|
libreoffice
|
libreoffice
|
LibreOffice before 2016-12-22 has an out-of-bounds write caused by a heap-based buffer overflow related to the EnhWMFReader::ReadEnhWMF function in vcl/source/filter/wmf/enhwmf.cxx.
|
CWE-787
Out-of-bounds Write
|
CVE-2016-10327
|
2024-11-21 11:43 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
