|
253851
|
9.8 |
CRITICAL
Network
|
alienvault
nfsen
|
ossim
unified_security_management
nfsen
|
AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 have an error in privilege dropping and unnecessarily execute the NfSen Perl code as root, aka AlienVault ID ENG-104945, a different vulne…
|
CWE-273
Improper Check for Dropped Privileges
|
CVE-2017-6972
|
2024-11-21 12:30 |
2017-03-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253852
|
8.8 |
HIGH
Network
|
alienvault
nfsen
|
ossim
unified_security_management
nfsen
|
AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 allow remote authenticated users to execute arbitrary commands in a privileged context, or launch a reverse shell, via vectors involving t…
|
CWE-74
Injection
|
CVE-2017-6971
|
2024-11-21 12:30 |
2017-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253853
|
8.4 |
HIGH
Local
|
alienvault
nfsen
|
ossim
unified_security_management
nfsen
|
AlienVault USM and OSSIM before 5.3.7 and NfSen before 1.3.8 allow local users to execute arbitrary commands in a privileged context via an NfSen socket, aka AlienVault ID ENG-104863.
|
CWE-78
OS Command
|
CVE-2017-6970
|
2024-11-21 12:30 |
2017-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253854
|
5.5 |
MEDIUM
Local
|
audiofile
|
audiofile
|
Integer overflow in modules/MSADPCM.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-6839
|
2024-11-21 12:30 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253855
|
5.5 |
MEDIUM
Local
|
audiofile
|
audiofile
|
Integer overflow in sfcommands/sfconvert.c in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via a crafted file.
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-6838
|
2024-11-21 12:30 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253856
|
5.5 |
MEDIUM
Local
|
audiofile
|
audiofile
|
WAVE.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (crash) via vectors related to a large number of coefficients.
|
CWE-20
Improper Input Validation
|
CVE-2017-6837
|
2024-11-21 12:30 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253857
|
5.5 |
MEDIUM
Local
|
audiofile
debian
|
audiofile
debian_linux
|
Heap-based buffer overflow in the Expand3To4Module::run function in libaudiofile/modules/SimpleModule.h in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0 allows re…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-6836
|
2024-11-21 12:30 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253858
|
5.5 |
MEDIUM
Local
|
audiofile
|
audiofile
|
The reset1 function in libaudiofile/modules/BlockCodec.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a craf…
|
CWE-369
Divide By Zero
|
CVE-2017-6835
|
2024-11-21 12:30 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253859
|
5.5 |
MEDIUM
Local
|
audiofile
debian
|
audiofile
debian_linux
|
Heap-based buffer overflow in the ulaw2linear_buf function in G711.cpp in Audio File Library (aka audiofile) 0.3.6, 0.3.5, 0.3.4, 0.3.3, 0.3.2, 0.3.1, 0.3.0, 0.2.7 allows remote attackers to cause a …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-6834
|
2024-11-21 12:30 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
253860
|
5.5 |
MEDIUM
Local
|
audiofile
|
audiofile
|
The runPull function in libaudiofile/modules/BlockCodec.cpp in Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a cra…
|
CWE-369
Divide By Zero
|
CVE-2017-6833
|
2024-11-21 12:30 |
2017-03-21 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
