|
267351
|
5.5 |
MEDIUM
Local
|
openbsd
|
openbsd
|
OpenBSD 5.8 and 5.9 allows local users to cause a denial of service (assertion failure and kernel panic) via a large ident value in a kevent system call.
|
CWE-189
Numeric Errors
|
CVE-2016-6242
|
2024-11-21 11:55 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267352
|
7.8 |
HIGH
Local
|
openbsd
|
openbsd
|
Integer overflow in the amap_alloc1 function in OpenBSD 5.8 and 5.9 allows local users to execute arbitrary code with kernel privileges via a large size value.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2016-6241
|
2024-11-21 11:55 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267353
|
7.8 |
HIGH
Local
|
openbsd
|
openbsd
|
Integer truncation error in the amap_alloc function in OpenBSD 5.8 and 5.9 allows local users to execute arbitrary code with kernel privileges via a large size value.
|
CWE-189
Numeric Errors
|
CVE-2016-6240
|
2024-11-21 11:55 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267354
|
5.5 |
MEDIUM
Local
|
openbsd
|
openbsd
|
The mmap extension __MAP_NOFAULT in OpenBSD 5.8 and 5.9 allows attackers to cause a denial of service (kernel panic and crash) via a large size value.
|
CWE-20
Improper Input Validation
|
CVE-2016-6239
|
2024-11-21 11:55 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267355
|
7.5 |
HIGH
Network
|
openbsd
|
openbsd
|
The sys_thrsigdivert function in kern/kern_sig.c in the OpenBSD kernel 5.9 allows remote attackers to cause a denial of service (panic) via a negative "ts.tv_sec" value.
|
CWE-20
Improper Input Validation
|
CVE-2016-6244
|
2024-11-21 11:55 |
2017-03-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267356
|
5.4 |
MEDIUM
Network
|
ibm
|
connections
|
IBM Connections 4.0, 4.5, 5.0, and 5.5 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality…
|
CWE-79
Cross-site Scripting
|
CVE-2016-5932
|
2024-11-21 11:55 |
2017-03-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267357
|
5.4 |
MEDIUM
Network
|
ibm
|
rational_requirements_composer
rational_doors_next_generation
|
IBM Rational DOORS Next Generation 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended…
|
CWE-79
Cross-site Scripting
|
CVE-2016-6055
|
2024-11-21 11:55 |
2017-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267358
|
6.1 |
MEDIUM
Network
|
ibm
|
inotes
|
IBM iNotes 8.5 and 9.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially lea…
|
CWE-79
Cross-site Scripting
|
CVE-2016-5883
|
2024-11-21 11:55 |
2017-02-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267359
|
5.3 |
MEDIUM
Local
|
f5
|
big-ip_local_traffic_manager
big-ip_websafe
big-ip_global_traffic_manager
big-ip_advanced_firewall_manager
big-ip_link_controller
big-ip_analytics
big-ip_access_policy_manager
bi…
|
F5 BIG-IP 12.0.0 and 11.5.0 - 11.6.1 REST requests which timeout during user account authentication may log sensitive attributes such as passwords in plaintext to /var/log/restjavad.0.log. It may all…
|
CWE-200
Information Exposure
|
CVE-2016-6249
|
2024-11-21 11:55 |
2017-02-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267360
|
7.8 |
HIGH
Local
|
shadow_project
|
shadow
|
Integer overflow in shadow 4.2.1 allows local users to gain privileges via crafted input to newuidmap.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2016-6252
|
2024-11-21 11:55 |
2017-02-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
