|
270151
|
8.8 |
HIGH
Network
|
trendmicro
|
virtual_mobile_infrastructure
|
The handle_certificate function in /vmi/manager/engine/management/commands/apns_worker.py in Trend Micro Virtual Mobile Infrastructure before 5.1 allows remote authenticated users to execute arbitrar…
|
CWE-77
Command Injection
|
CVE-2016-6270
|
2024-11-21 11:55 |
2017-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270152
|
9.1 |
CRITICAL
Network
|
trendmicro
|
smart_protection_server
|
Multiple directory traversal vulnerabilities in Trend Micro Smart Protection Server 2.5 before build 2200, 2.6 before build 2106, and 3.0 before build 1330 allow remote attackers to read and delete a…
|
CWE-22
Path Traversal
|
CVE-2016-6269
|
2024-11-21 11:55 |
2017-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270153
|
7.8 |
HIGH
Local
|
trendmicro
|
smart_protection_server
|
Trend Micro Smart Protection Server 2.5 before build 2200, 2.6 before build 2106, and 3.0 before build 1330 allows local webserv users to execute arbitrary code with root privileges via a Trojan hors…
|
CWE-264
Permissions, Privileges, and Access Controls
|
CVE-2016-6268
|
2024-11-21 11:55 |
2017-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270154
|
8.8 |
HIGH
Network
|
trendmicro
|
smart_protection_server
|
SnmpUtils in Trend Micro Smart Protection Server 2.5 before build 2200, 2.6 before build 2106, and 3.0 before build 1330 allows remote authenticated users to execute arbitrary commands via shell meta…
|
CWE-20
Improper Input Validation
|
CVE-2016-6267
|
2024-11-21 11:55 |
2017-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270155
|
8.8 |
HIGH
Network
|
trendmicro
|
smart_protection_server
|
ccca_ajaxhandler.php in Trend Micro Smart Protection Server 2.5 before build 2200, 2.6 before build 2106, and 3.0 before build 1330 allows remote authenticated users to execute arbitrary commands via…
|
CWE-20
Improper Input Validation
|
CVE-2016-6266
|
2024-11-21 11:55 |
2017-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270156
|
7.8 |
HIGH
Local
|
putty
|
putty
|
Multiple untrusted search path vulnerabilities in Putty beta 0.67 allow local users to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse (1) UxTheme.dll or (2) ntmarta.dll f…
|
CWE-426
Untrusted Search Path
|
CVE-2016-6167
|
2024-11-21 11:55 |
2017-01-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270157
|
7.5 |
HIGH
Network
|
uclibc
uclibc-ng_project
|
uclibc
uclibc-ng
|
Integer signedness error in libc/string/arm/memset.S in uClibc and uClibc-ng before 1.0.16 allows context-dependent attackers to cause a denial of service (crash) via a negative length value to the m…
|
NVD-CWE-Other
|
CVE-2016-6264
|
2024-11-21 11:55 |
2017-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270158
|
7.5 |
HIGH
Network
|
libical_project
|
libical
|
The icaltime_from_string function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted string to the icalparser_parse_string function.
|
CWE-125
Out-of-bounds Read
|
CVE-2016-5827
|
2024-11-21 11:55 |
2017-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270159
|
7.5 |
HIGH
Network
|
libical_project
|
libical
|
The parser_get_next_char function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service (out-of-bounds heap read) by crafting a string to the icalparser_parse_string function.
|
CWE-125
Out-of-bounds Read
|
CVE-2016-5826
|
2024-11-21 11:55 |
2017-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
270160
|
5.5 |
MEDIUM
Local
|
libical_project
|
libical
|
The icalparser_parse_string function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted ics file.
|
CWE-125
Out-of-bounds Read
|
CVE-2016-5825
|
2024-11-21 11:55 |
2017-01-28 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
