|
251481
|
6.5 |
MEDIUM
Network
|
odoo
|
odoo
|
Directory traversal vulnerability in tools.file_open in Odoo 8.0, 9.0, and 10.0 allows remote authenticated users to read arbitrary local files readable by the Odoo service.
|
CWE-22
Path Traversal
|
CVE-2017-9416
|
2024-11-21 12:36 |
2017-06-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251482
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
In ImageMagick 7.0.5-5, the ReadMPCImage function in mpc.c allows attackers to cause a denial of service (memory leak) via a crafted file.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-9409
|
2024-11-21 12:36 |
2017-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251483
|
6.5 |
MEDIUM
Network
|
freedesktop
debian
|
poppler
debian_linux
|
In Poppler 0.54.0, a memory leak vulnerability was found in the function Object::initArray in Object.cc, which allows attackers to cause a denial of service via a crafted file.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-9408
|
2024-11-21 12:36 |
2017-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251484
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
In ImageMagick 7.0.5-5, the ReadPALMImage function in palm.c allows attackers to cause a denial of service (memory leak) via a crafted file.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-9407
|
2024-11-21 12:36 |
2017-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251485
|
6.5 |
MEDIUM
Network
|
freedesktop
debian
|
poppler
debian_linux
|
In Poppler 0.54.0, a memory leak vulnerability was found in the function gmalloc in gmem.cc, which allows attackers to cause a denial of service via a crafted file.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-9406
|
2024-11-21 12:36 |
2017-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251486
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
In ImageMagick 7.0.5-5, the ReadICONImage function in icon.c:452 allows attackers to cause a denial of service (memory leak) via a crafted file.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-9405
|
2024-11-21 12:36 |
2017-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251487
|
6.5 |
MEDIUM
Network
|
libtiff
debian
canonical
|
libtiff
debian_linux
ubuntu_linux
|
In LibTIFF 4.0.7, a memory leak vulnerability was found in the function OJPEGReadHeaderInfoSecTablesQTable in tif_ojpeg.c, which allows attackers to cause a denial of service via a crafted file.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-9404
|
2024-11-21 12:36 |
2017-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251488
|
6.5 |
MEDIUM
Network
|
libtiff
debian
canonical
|
libtiff
debian_linux
ubuntu_linux
|
In LibTIFF 4.0.7, a memory leak vulnerability was found in the function TIFFReadDirEntryLong8Array in tif_dirread.c, which allows attackers to cause a denial of service via a crafted file.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-9403
|
2024-11-21 12:36 |
2017-06-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251489
|
9.8 |
CRITICAL
Network
|
gnu
opensuse
fedoraproject
|
adns
leap
fedora
|
An issue was discovered in adns before 1.5.2. It hangs, eating CPU, if a compression pointer loop is encountered.
|
CWE-400
Uncontrolled Resource Consumption
|
CVE-2017-9104
|
2024-11-21 12:35 |
2020-06-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
251490
|
7.5 |
HIGH
Network
|
gnu
opensuse
fedoraproject
|
adns
leap
fedora
|
An issue was discovered in adns before 1.5.2. adnshost mishandles a missing final newline on a stdin read. It is wrong to increment used as well as setting r, since used is incremented according to r…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-9108
|
2024-11-21 12:35 |
2020-06-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
