|
267441
|
7.8 |
HIGH
Local
|
microsoft
|
word
sharepoint_enterprise_server
|
Microsoft Word 2016 and SharePoint Enterprise Server 2016 allow remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office Memory Corruption Vulnerability."
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-0003
|
2024-11-21 12:02 |
2017-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267442
|
8.8 |
HIGH
Network
|
microsoft
|
edge
|
Microsoft Edge allows remote attackers to bypass the Same Origin Policy via vectors involving the about:blank URL and data: URLs, aka "Microsoft Edge Elevation of Privilege Vulnerability."
|
NVD-CWE-noinfo
|
CVE-2017-0002
|
2024-11-21 12:02 |
2017-01-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267443
|
9.8 |
CRITICAL
Network
|
php
|
php
|
The unserialize implementation in ext/standard/var.c in PHP 7.x before 7.0.14 allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via craft…
|
CWE-416
Use After Free
|
CVE-2016-9936
|
2024-11-21 12:02 |
2017-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267444
|
9.8 |
CRITICAL
Network
|
php
|
php
|
The php_wddx_push_element function in ext/wddx/wddx.c in PHP before 5.6.29 and 7.x before 7.0.14 allows remote attackers to cause a denial of service (out-of-bounds read and memory corruption) or pos…
|
CWE-125
Out-of-bounds Read
|
CVE-2016-9935
|
2024-11-21 12:02 |
2017-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267445
|
7.5 |
HIGH
Network
|
php
|
php
|
ext/wddx/wddx.c in PHP before 5.6.28 and 7.x before 7.0.13 allows remote attackers to cause a denial of service (NULL pointer dereference) via crafted serialized data in a wddxPacket XML document, as…
|
CWE-476
NULL Pointer Dereference
|
CVE-2016-9934
|
2024-11-21 12:02 |
2017-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267446
|
7.5 |
HIGH
Network
|
libgd
|
libgd
|
Stack consumption vulnerability in the gdImageFillToBorder function in gd.c in the GD Graphics Library (aka libgd) before 2.2.2, as used in PHP before 5.6.28 and 7.x before 7.0.13, allows remote atta…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9933
|
2024-11-21 12:02 |
2017-01-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267447
|
9.8 |
CRITICAL
Network
|
libvncserver_project
|
libvncserver
|
Heap-based buffer overflow in ultra.c in LibVNCClient in LibVNCServer before 0.9.11 allows remote servers to cause a denial of service (application crash) or possibly execute arbitrary code via a cra…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9942
|
2024-11-21 12:02 |
2017-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267448
|
9.8 |
CRITICAL
Network
|
libvncserver_project
|
libvncserver
|
Heap-based buffer overflow in rfbproto.c in LibVNCClient in LibVNCServer before 0.9.11 allows remote servers to cause a denial of service (application crash) or possibly execute arbitrary code via a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-9941
|
2024-11-21 12:02 |
2017-01-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267449
|
6.5 |
MEDIUM
Local
|
qemu
debian
|
qemu
debian_linux
|
Memory leak in hw/9pfs/9p-proxy.c in QEMU (aka Quick Emulator) allows local privileged guest OS users to cause a denial of service (host memory consumption and possibly QEMU process crash) by leverag…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2016-9916
|
2024-11-21 12:02 |
2016-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267450
|
6.5 |
MEDIUM
Local
|
qemu
debian
|
qemu
debian_linux
|
Memory leak in hw/9pfs/9p-handle.c in QEMU (aka Quick Emulator) allows local privileged guest OS users to cause a denial of service (host memory consumption and possibly QEMU process crash) by levera…
|
CWE-401
Missing Release of Memory after Effective Lifetime
|
CVE-2016-9915
|
2024-11-21 12:02 |
2016-12-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
