|
264071
|
6.2 |
MEDIUM
Local
|
antiy
|
antivirus_engine
|
When Antiy Antivirus Engine before 5.0.0.05171547 scans a special ZIP archive, it crashes with a stack-based buffer overflow because a fixed path length is used.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-10706
|
2024-11-21 12:06 |
2017-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264072
|
6.5 |
MEDIUM
Network
|
gnu
|
pspp
|
There is a NULL Pointer Dereference in the function ll_insert() of the libpspp library in GNU PSPP before 0.11.0. For example, a crash was observed within the library code when attempting to convert …
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-10792
|
2024-11-21 12:06 |
2017-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264073
|
6.5 |
MEDIUM
Network
|
gnu
|
pspp
|
There is an Integer overflow in the hash_int function of the libpspp library in GNU PSPP before 0.11.0. For example, a crash was observed within the library code when attempting to convert invalid SP…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-10791
|
2024-11-21 12:06 |
2017-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264074
|
7.5 |
HIGH
Network
|
gnu
|
libtasn1
|
The _asn1_check_identifier function in GNU Libtasn1 through 4.12 causes a NULL pointer dereference and crash when reading crafted input that triggers assignment of a NULL value within an asn1_node st…
|
CWE-476
NULL Pointer Dereference
|
CVE-2017-10790
|
2024-11-21 12:06 |
2017-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264075
|
5.9 |
MEDIUM
Network
|
dbd-mysql_project
|
dbd-mysql
|
The DBD::mysql module through 4.043 for Perl uses the mysql_ssl=1 setting to mean that SSL is optional (even though this setting's documentation has a "your communication with the server will be encr…
|
NVD-CWE-noinfo
|
CVE-2017-10789
|
2024-11-21 12:06 |
2017-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264076
|
9.8 |
CRITICAL
Network
|
dbd-mysql_project
|
dbd-mysql
|
The DBD::mysql module through 4.043 for Perl allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact by triggering (1) ce…
|
CWE-416
Use After Free
|
CVE-2017-10788
|
2024-11-21 12:06 |
2017-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264077
|
6.8 |
MEDIUM
Physics
|
google
|
android
|
The lockscreen on Elephone P9000 devices (running Android 6.0) allows physically proximate attackers to bypass a wrong-PIN lockout feature by pressing backspace after each PIN guess.
|
CWE-287
Improper Authentication
|
CVE-2017-10709
|
2024-11-21 12:06 |
2017-07-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264078
|
9.8 |
CRITICAL
Network
|
videolan
|
vlc_media_player
|
avcodec 2.2.x, as used in VideoLAN VLC media player 2.2.7-x before 2017-06-29, allows out-of-bounds heap memory write due to calling memcpy() with a wrong size, leading to a denial of service (applic…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-10699
|
2024-11-21 12:06 |
2017-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264079
|
5.5 |
MEDIUM
Local
|
antiy
|
antivirus_engine
|
Antiy Antivirus Engine 5.0.0.06281654 allows local users to cause a denial of service (BSOD) via a long third argument in a DeviceIoControl call.
|
CWE-20
Improper Input Validation
|
CVE-2017-10674
|
2024-11-21 12:06 |
2017-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
264080
|
9.8 |
CRITICAL
Network
|
xoev
|
osci_transport_library
|
An XML External Entity (XXE) issue exists in OSCI-Transport 1.2 as used in OSCI Transport Library 1.6.1 (Java) and OSCI Transport Library 1.6 (.NET), exploitable by sending a crafted standard-conform…
|
CWE-611
XXE
|
CVE-2017-10670
|
2024-11-21 12:06 |
2017-06-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
