|
254361
|
7.8 |
HIGH
Local
|
artifex
|
jbig2dec
|
Artifex jbig2dec 0.13, as used in Ghostscript, allows out-of-bounds writes because of an integer overflow in the jbig2_build_huffman_table function in jbig2_huffman.c during operations on a crafted J…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-7975
|
2024-11-21 12:33 |
2017-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254362
|
10.0 |
CRITICAL
Network
|
zyxel
|
wre6505_firmware
|
Zyxel WRE6505 devices have a default TELNET password of 1234 for the root and admin accounts, which makes it easier for remote attackers to conduct DNS hijacking attacks by reconfiguring the built-in…
|
CWE-1188
Insecure Default Initialization of Resource
|
CVE-2017-7964
|
2024-11-21 12:33 |
2017-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254363
|
7.5 |
HIGH
Network
|
php
|
php
|
The GNU Multiple Precision Arithmetic Library (GMP) interfaces for PHP through 7.1.4 allow attackers to cause a denial of service (memory consumption and application crash) via operations on long str…
|
CWE-770
Allocation of Resources Without Limits or Throttling
|
CVE-2017-7963
|
2024-11-21 12:33 |
2017-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254364
|
5.5 |
MEDIUM
Local
|
entropymine
|
imageworsener
|
The iwgif_read_image function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a craf…
|
CWE-369
Divide By Zero
|
CVE-2017-7962
|
2024-11-21 12:33 |
2017-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254365
|
5.5 |
MEDIUM
Local
|
gnome
|
libcroco
|
The cr_input_new_from_uri function in cr-input.c in libcroco 0.6.11 and 0.6.12 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted CSS file.
|
CWE-125
Out-of-bounds Read
|
CVE-2017-7960
|
2024-11-21 12:33 |
2017-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254366
|
7.8 |
HIGH
Local
|
artifex
|
ghostscript
|
Integer overflow in the mark_curve function in Artifex Ghostscript 9.21 allows remote attackers to cause a denial of service (out-of-bounds write and application crash) or possibly have unspecified o…
|
CWE-190
Integer Overflow or Wraparound
|
CVE-2017-7948
|
2024-11-21 12:33 |
2017-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254367
|
7.8 |
HIGH
Local
|
gnome
|
libcroco
|
The cr_tknzr_parse_rgb function in cr-tknzr.c in libcroco 0.6.11 and 0.6.12 has an "outside the range of representable values of type long" undefined behavior issue, which might allow remote attacker…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-7961
|
2024-11-21 12:33 |
2017-04-20 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254368
|
5.5 |
MEDIUM
Local
|
radare
|
radare2
|
The get_relocs_64 function in libr/bin/format/mach0/mach0.c in radare2 1.3.0 allows remote attackers to cause a denial of service (use-after-free and application crash) via a crafted Mach0 file.
|
CWE-416
Use After Free
|
CVE-2017-7946
|
2024-11-21 12:33 |
2017-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254369
|
6.5 |
MEDIUM
Network
|
imagemagick
debian
|
imagemagick
debian_linux
|
The ReadSVGImage function in svg.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-7943
|
2024-11-21 12:33 |
2017-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
254370
|
6.5 |
MEDIUM
Network
|
imagemagick
|
imagemagick
|
The ReadAVSImage function in avs.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
|
CWE-772
Missing Release of Resource after Effective Lifetime
|
CVE-2017-7942
|
2024-11-21 12:33 |
2017-04-19 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
