|
266771
|
8.8 |
HIGH
Network
|
adobe
|
flash_player
flash_player_desktop_runtime
|
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.375 and 19.x through 23.x before 23.0.0.162 on Windows and OS X and before 11.2.202.635 on Linux allows attackers to execute arbitrary…
|
CWE-416
Use After Free
|
CVE-2016-6921
|
2024-11-21 11:57 |
2016-09-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266772
|
9.8 |
CRITICAL
Network
|
php
|
php
|
ext/curl/interface.c in PHP 7.x before 7.0.10 does not work around a libcurl integer overflow, which allows remote attackers to cause a denial of service (allocation error and heap-based buffer overf…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2016-7134
|
2024-11-21 11:57 |
2016-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266773
|
8.1 |
HIGH
Network
|
php
|
php
|
Zend/zend_alloc.c in PHP 7.x before 7.0.10, when open_basedir is enabled, mishandles huge realloc operations, which allows remote attackers to cause a denial of service (integer overflow) or possibly…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2016-7133
|
2024-11-21 11:57 |
2016-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266774
|
7.5 |
HIGH
Network
|
php
|
php
|
ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or possibly have unspecified other imp…
|
CWE-476
NULL Pointer Dereference
|
CVE-2016-7132
|
2024-11-21 11:57 |
2016-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266775
|
7.5 |
HIGH
Network
|
php
|
php
|
ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or possibly have unspecified other imp…
|
CWE-476
NULL Pointer Dereference
|
CVE-2016-7131
|
2024-11-21 11:57 |
2016-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266776
|
7.5 |
HIGH
Network
|
php
|
php
|
The php_wddx_pop_element function in ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) o…
|
CWE-476
NULL Pointer Dereference
|
CVE-2016-7130
|
2024-11-21 11:57 |
2016-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266777
|
9.8 |
CRITICAL
Network
|
php
|
php
|
The php_wddx_process_data function in ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service (segmentation fault) or possibly have unspecified…
|
CWE-20
Improper Input Validation
|
CVE-2016-7129
|
2024-11-21 11:57 |
2016-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266778
|
5.3 |
MEDIUM
Network
|
php
|
php
|
The exif_process_IFD_in_TIFF function in ext/exif/exif.c in PHP before 5.6.25 and 7.x before 7.0.10 mishandles the case of a thumbnail offset that exceeds the file size, which allows remote attackers…
|
CWE-200
Information Exposure
|
CVE-2016-7128
|
2024-11-21 11:57 |
2016-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266779
|
9.8 |
CRITICAL
Network
|
php
|
php
|
The imagegammacorrect function in ext/gd/gd.c in PHP before 5.6.25 and 7.x before 7.0.10 does not properly validate gamma values, which allows remote attackers to cause a denial of service (out-of-bo…
|
CWE-787
Out-of-bounds Write
|
CVE-2016-7127
|
2024-11-21 11:57 |
2016-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
266780
|
9.8 |
CRITICAL
Network
|
php
|
php
|
The imagetruecolortopalette function in ext/gd/gd.c in PHP before 5.6.25 and 7.x before 7.0.10 does not properly validate the number of colors, which allows remote attackers to cause a denial of serv…
|
CWE-787
Out-of-bounds Write
|
CVE-2016-7126
|
2024-11-21 11:57 |
2016-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
