|
254321
|
7.8 |
HIGH
Local
|
xnview
|
xnview
|
XnView Classic for Windows Version 2.40 allows user-assisted remote attackers to execute code via a crafted .mkv file that is mishandled during the opening of a directory in "Browser" mode, because o…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-8381
|
2024-11-21 12:33 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254322
|
7.8 |
HIGH
Local
|
irfanview
|
fpx
irfanview
|
IrfanView version 4.44 (32bit) with FPX Plugin 4.45 allows remote attackers to execute arbitrary code or cause a denial of service (Heap Corruption and application crash) in processing a FlashPix (.F…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-8370
|
2024-11-21 12:33 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254323
|
7.8 |
HIGH
Local
|
irfanview
|
irfanview
|
IrfanView version 4.44 (32bit) has a "Data from Faulting Address controls Branch Selection starting at USER32!wvsprintfA+0x00000000000002f3" issue, which might allow attackers to execute arbitrary co…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-8369
|
2024-11-21 12:33 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254324
|
7.8 |
HIGH
Local
|
sublimetext
|
sublime_text_3
|
Sublime Text 3 Build 3126 allows user-assisted attackers to cause a denial of service or possibly have unspecified other impact via a crafted .mkv file. One threat model is a victim who obtains an un…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-8368
|
2024-11-21 12:33 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254325
|
7.8 |
HIGH
Local
|
xnview
|
xnview
|
XnView Classic for Windows Version 2.40 allows user-assisted remote attackers to execute code via a crafted .mov file that is mishandled during the opening of a directory in "Browser" mode, because o…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-8282
|
2024-11-21 12:33 |
2017-07-6 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254326
|
9.8 |
CRITICAL
Network
|
teltonika
|
rut900_firmware
rut905_firmware
rut950_firmware
rut955_firmware
|
The management interface for the Teltonika RUT9XX routers (aka LuCI) with firmware 00.03.265 and earlier allows remote attackers to execute arbitrary commands with root privileges via shell metachara…
|
CWE-78
OS Command
|
CVE-2017-8116
|
2024-11-21 12:33 |
2017-07-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254327
|
5.9 |
MEDIUM
Network
|
google
|
android
|
In all Android releases from CAF using the Linux kernel, a race condition exists in a QTEE driver potentially leading to an arbitrary memory write.
|
CWE-362
Race Condition
|
CVE-2017-8242
|
2024-11-21 12:33 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254328
|
7.8 |
HIGH
Local
|
google
|
android
|
In all Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in a WLAN function due to an incorrect message length.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-8241
|
2024-11-21 12:33 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254329
|
7.8 |
HIGH
Local
|
google
|
android
|
In all Android releases from CAF using the Linux kernel, a kernel driver has an off-by-one buffer over-read vulnerability.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-8240
|
2024-11-21 12:33 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254330
|
5.5 |
MEDIUM
Local
|
google
|
android
|
In all Android releases from CAF using the Linux kernel, userspace-controlled parameters for flash initialization are not sanitized potentially leading to exposure of kernel memory.
|
CWE-200
Information Exposure
|
CVE-2017-8239
|
2024-11-21 12:33 |
2017-06-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
