|
267131
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
|
CWE-125
Out-of-bounds Read
|
CVE-2016-7519
|
2024-11-21 11:58 |
2017-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267132
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the number of pixels.
|
CWE-125
Out-of-bounds Read
|
CVE-2016-7515
|
2024-11-21 11:58 |
2017-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267133
|
7.5 |
HIGH
Network
|
digium
debian
|
asterisk
certified_asterisk
debian_linux
|
chain_sip in Asterisk Open Source 11.x before 11.23.1 and 13.x 13.11.1 and Certified Asterisk 11.6 before 11.6-cert15 and 13.8 before 13.8-cert3 allows remote attackers to cause a denial of service (…
|
CWE-399
Resource Management Errors
|
CVE-2016-7551
|
2024-11-21 11:58 |
2017-04-18 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267134
|
8.8 |
HIGH
Adjacent
|
sony
|
snc_series_firmware
|
SONY SNC-CH115, SNC-CH120, SNC-CH160, SNC-CH220, SNC-CH260, SNC-DH120, SNC-DH120T, SNC-DH160, SNC-DH220, SNC-DH220T, SNC-DH260, SNC-EB520, SNC-EM520, SNC-EM521, SNC-ZB550, SNC-ZM550, SNC-ZM551, SNC-E…
|
CWE-200
Information Exposure
|
CVE-2016-7834
|
2024-11-21 11:58 |
2017-04-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267135
|
7.5 |
HIGH
Network
|
wireshark
|
wireshark
|
In Wireshark 2.2.0, the NCP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/CMakeLists.txt by registering this dissector.
|
CWE-20
Improper Input Validation
|
CVE-2016-7958
|
2024-11-21 11:58 |
2017-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267136
|
7.5 |
HIGH
Network
|
wireshark
|
wireshark
|
In Wireshark 2.2.0, the Bluetooth L2CAP dissector could crash, triggered by packet injection or a malformed capture file. This was addressed in epan/dissectors/packet-btl2cap.c by avoiding use of a s…
|
CWE-20
Improper Input Validation
|
CVE-2016-7957
|
2024-11-21 11:58 |
2017-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267137
|
9.8 |
CRITICAL
Network
|
trendmicro
|
threat_discovery_appliance
|
On the Trend Micro Threat Discovery Appliance 2.6.1062r1, directory traversal when processing a session_id cookie allows a remote, unauthenticated attacker to delete arbitrary files as root. This can…
|
CWE-22
Path Traversal
|
CVE-2016-7552
|
2024-11-21 11:58 |
2017-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267138
|
9.8 |
CRITICAL
Network
|
trendmicro
|
threat_discovery_appliance
|
A command execution flaw on the Trend Micro Threat Discovery Appliance 2.6.1062r1 exists with the timezone parameter in the admin_sys_time.cgi interface.
|
CWE-361
7PK - Time and State
|
CVE-2016-7547
|
2024-11-21 11:58 |
2017-04-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267139
|
5.3 |
MEDIUM
Network
|
f5
|
big-ip_access_policy_manager
|
The TMM SSO plugin in F5 BIG-IP APM 12.0.0 - 12.1.1, 11.6.0 - 11.6.1 HF1, 11.5.4 - 11.5.4 HF2, when configured as a SAML Identity Provider with a Service Provider (SP) connector, might allow traffic …
|
CWE-20
Improper Input Validation
|
CVE-2016-7467
|
2024-11-21 11:58 |
2017-04-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
267140
|
8.8 |
HIGH
Network
|
sophos
|
cyberoam_cr25ing_utm_firmware
|
Sophos Cyberoam UTM CR25iNG 10.6.3 MR-5 allows remote authenticated users to bypass intended access restrictions via direct object reference, as demonstrated by a request for Licenseinformation.jsp. …
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-7786
|
2024-11-21 11:58 |
2017-04-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
